CVE-2023-30736 Information

Description

Improper authorization in PushMsgReceiver of Samsung Assistant prior to version 8.7.00.1 allows attacker to execute javascript interface. To trigger this vulnerability user interaction is required.

Reference

https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=10