CVE-2023-42580 Information

Description

Improper URL validation from MCSLaunch deeplink in Galaxy Store prior to version 4.5.64.4 allows attackers to execute JavaScript API to install APK from Galaxy Store.

Reference

https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=12