CVE-2023-30713: 
NixOS vulnerability analysis and mitigation

CVE-2023-30713 is a vulnerability discovered in Samsung's One UI Home, specifically in the FolderLockNotifier component. The vulnerability was disclosed and patched in the Samsung Mobile Security Maintenance Release (SMR) for September 2023. This improper privilege management vulnerability affects Samsung devices running Android versions 11.0 through 14.0 (Samsung Advisory).

The vulnerability is classified as a privilege management issue (CWE-269) with a CVSS v3.1 base score of 5.5 (MEDIUM) according to NIST, and 6.2 (MEDIUM) according to Samsung Mobile. The CVSS vector string is CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N, indicating local access, low attack complexity, low privileges required, no user interaction, and high impact on integrity (NVD).

The vulnerability allows local attackers to change some settings of the folder lock feature in Samsung's One UI Home interface. This could potentially compromise the security of locked folders on affected devices (Samsung Advisory).

Samsung has addressed this vulnerability in the September 2023 Security Maintenance Release (SMR). Users should update their devices to SMR Sep-2023 Release 1 or later to protect against this vulnerability (Samsung Advisory).