CVE-2023-21515 Information

Description

InstantPlay which included vulnerable script which could execute javascript in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.

Reference

https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=01