{"vulnerability": "CVE-2023-2151", "sightings": [{"uuid": "f842b016-17dc-43cc-8918-ff90bc9b9602", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21515", "type": "seen", "source": "https://t.me/cibsecurity/64733", "content": "\u203c CVE-2023-21515 \u203c\n\nInstantPlay which included vulnerable script which could execute javascript in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-27T02:28:52.000000Z"}, {"uuid": "fe74a8f5-bc3d-45d4-b9ed-baf2c0ebfeac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21514", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1875", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-21514\n\ud83d\udd39 Description: Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.\n\ud83d\udccf Published: 2023-05-26T00:00:00\n\ud83d\udccf Modified: 2025-01-15T21:38:48.735Z\n\ud83d\udd17 References:\n1. https://security.samsungmobile.com/serviceWeb.smsb?year=2023&month=01", "creation_timestamp": "2025-01-15T21:54:55.000000Z"}, {"uuid": "abac19f9-15c6-4606-9b2a-97170788dc74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21517", "type": "seen", "source": "https://t.me/cibsecurity/65694", "content": "\u203c CVE-2023-21517 \u203c\n\nHeap out-of-bound write vulnerability in Exynos baseband prior to SMR Jun-2023 Release 1 allows remote attacker to execute arbitrary code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-29T00:13:32.000000Z"}, {"uuid": "754dca51-4a42-4b5e-98ec-737ff501a1f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21518", "type": "seen", "source": "https://t.me/cibsecurity/65684", "content": "\u203c CVE-2023-21518 \u203c\n\nImproper access control vulnerability in SearchWidget prior to version 3.3 in China models allows untrusted applications to start arbitrary activity.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-29T00:13:16.000000Z"}, {"uuid": "e9fe8f0c-f3ef-4bc6-baf0-fdb334f9c64a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21513", "type": "seen", "source": "https://t.me/cibsecurity/65699", "content": "\u203c CVE-2023-21513 \u203c\n\nImproper privilege management vulnerability in CC Mode prior to SMR Jun-2023 Release 1 allows physical attackers to manipulate device to operate in way that results in unexpected behavior in CC Mode under specific condition.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-29T00:13:40.000000Z"}]}