CVE-2023-42581 Information

Description

Improper URL validation from InstantPlay deeplink in Galaxy Store prior to version 4.5.64.4 allows attackers to execute JavaScript API to access data.

Reference

https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=12