CVE-2024-34671

Vulnerability

In Samsung Internet versions prior to 26.0.3.1, the translation functionality leverages an implicit intent for sensitive communication. This design flaw allows a local attacker to intercept or read sensitive data being passed through the intent. User interaction is required to trigger the vulnerability. Affected versions: Samsung Internet prior to 26.0.3.1 [1].

Exploitation

An attacker must have local access to the device (e.g., a malicious app installed on the same device) and must be able to register an intent filter for the implicit intent used by the translation feature. When the user engages the translation functionality, the malicious app can intercept the intent and capture the sensitive information it contains [1].

Impact

Successful exploitation leads to disclosure of sensitive information to the local attacker. The exposed data could include user-provided text or other context transmitted via the translation feature. The compromise is limited to information disclosure and does not grant code execution or elevated privileges [1].

Mitigation

Samsung has addressed this vulnerability in Samsung Internet version 26.0.3.1. Users should update to this version or later. No workarounds are provided in the available references [1].