CVE-2023-21483 – An improper access control vulnerability in Sam... (How to Fix)

Q: What is the severity of CVE-2023-21483?

CVE-2023-21483 has a CVSS score of 6.4 (MEDIUM). An improper access control vulnerability in Samsung Galaxy Store allows local attackers to access protected data through an exported service. This affects Samsung Galaxy devices running Galaxy Store versions prior to 4.5.53.6. The vulnerability requires physical access or local execution on the device.

📋 TL;DR

An improper access control vulnerability in Samsung Galaxy Store allows local attackers to access protected data through an exported service. This affects Samsung Galaxy devices running Galaxy Store versions prior to 4.5.53.6. The vulnerability requires physical access or local execution on the device.

💻 Affected Systems

Products:

Samsung Galaxy Store

Versions: All versions prior to 4.5.53.6

Operating Systems: Android (Samsung devices)

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects Samsung devices with Galaxy Store installed. Requires attacker to have local access or ability to execute code on device.

📦 What is this software?

Galaxy Store by Samsung

View all CVEs affecting Galaxy Store →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Local attacker gains unauthorized access to sensitive user data stored by Galaxy Store, potentially including account information, download history, or payment details.

🟠

Likely Case

Malicious app or user with physical access extracts limited protected data from Galaxy Store's storage.

🟢

If Mitigated

Proper service permissions prevent unauthorized access, limiting data exposure to intended components only.

🌐 Internet-Facing: LOW - Requires local access to device, not remotely exploitable.

🏢 Internal Only: MEDIUM - Local attackers or malicious apps could exploit this on compromised devices.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires understanding of Android service components and local execution capability. No public exploit code available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 4.5.53.6 and later

Vendor Advisory: https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=04

Restart Required: No

Instructions:

1. Open Galaxy Store app. 2. Go to Settings. 3. Check for updates. 4. Install version 4.5.53.6 or later. 5. Alternatively, update through Samsung's app store update mechanism.

🔧 Temporary Workarounds

Disable Galaxy Store

Android

Temporarily disable Galaxy Store app to prevent exploitation

adb shell pm disable-user --user 0 com.sec.android.app.samsungapps

Restrict app installations

all

Prevent installation of untrusted apps that could exploit this vulnerability

🧯 If You Can't Patch

Implement device access controls and physical security measures
Use mobile device management (MDM) to restrict app installations and monitor for suspicious activity

🔍 How to Verify

Check if Vulnerable:

Check Galaxy Store version in app settings or via: adb shell dumpsys package com.sec.android.app.samsungapps | grep versionName

Check Version:

adb shell dumpsys package com.sec.android.app.samsungapps | grep versionName

Verify Fix Applied:

Confirm version is 4.5.53.6 or higher using same command

📡 Detection & Monitoring

Log Indicators:

Unauthorized access attempts to Galaxy Store services in Android logs
Suspicious package manager or service binding activity

Network Indicators:

Not applicable - local vulnerability

SIEM Query:

source="android" AND (process="com.sec.android.app.samsungapps" OR package="com.sec.android.app.samsungapps") AND (event="service_access" OR event="permission_violation")

📊 Metadata

CVE ID: CVE-2023-21483

CVSS v3 Score: 6.4 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

EPSS Score: 0.01% exploit probability (1.3th percentile)

Published: September 3, 2025

Last Updated: September 9, 2025

🔗 References

https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=04 Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON