Samsung has released an important update to the Galaxy Store, the app store present on all its phones. It fixes critical security holes that allowed third-party applications to remotely control the smartphone and extract information from it.
The vulnerability was reported by Researchers at ncc group and is identified by code CVE-2023-21433 in Common Vulnerabilities and Exposures.
The good news is that the vulnerability that allows the installation of apps on the phone is not present on devices with Android 13, which brings native protection against it, but we recommend that you update the Galaxy Store, because the second security hole can only be fixed in this way.
To install the latest version of the Galaxy Store open the store app, tap > Settings > About the Galaxy Store.
More Information ℹ
- Technical Advisory – Multiple Vulnerabilities in the Galaxy App Store (CVE-2023-21433, CVE-2023-21434)