CVE-2021-25424

🗓️ 11 Jun 2021 14:33:46Reported by Samsung MobileType

cve🔗 web.nvd.nist.gov📰️ 6 Media mentions👁 42 Views

Improper authentication vulnerability in Tizen bluetooth-frwk prior to Firmware update JUN-2021 Release allows bluetooth attacker to take over the user's bluetooth device without user awareness

Reporter	Title	Published	Views	Family All 7
CNNVD	Tizen bluetooth-frwk 授权问题漏洞	11 Jun 202100:00	–	cnnvd
Cvelist	CVE-2021-25424	11 Jun 202114:33	–	cvelist
EUVD	EUVD-2021-12320	7 Oct 202500:30	–	euvd
NVD	CVE-2021-25424	11 Jun 202115:15	–	nvd
OSV	CVE-2021-25424	11 Jun 202115:15	–	osv
Prion	Authentication flaw	11 Jun 202115:15	–	prion
RedhatCVE	CVE-2021-25424	22 May 202519:26	–	redhatcve

NVD

Node

samsung galaxy_watch_active_2_firmwareRange<5.5

AND

samsung galaxy_watch_active_2Match-

Node

samsung galaxy_watch_active_firmwareRange<5.5

AND

samsung galaxy_watch_activeMatch-

Node

samsung galaxy_watch_firmwareRange<5.5

AND

samsung galaxy_watchMatch-

Node

samsung galaxy_watch_3_firmwareRange<5.5

AND

samsung galaxy_watch_3Match-

Node

samsung gear_s3_firmwareRange<5.5

AND

samsung gear_s3Match-

Node

samsung gear_s2_firmwareRange<5.5

AND

samsung gear_s2Match-

Node

samsung gear_s_firmwareRange<5.5

AND

samsung gear_sMatch-

Node

samsung gear_2_firmwareRange<5.5

AND

samsung gear_2Match-

Node

samsung gear_2_neo_firmwareRange<5.5

AND

samsung gear_2_neoMatch-

[
  {
    "product": "Tizen wearable devices",
    "vendor": "Samsung Mobile",
    "versions": [
      {
        "lessThan": "Firmware update JUN-2021 Release",
        "status": "affected",
        "version": "5.5",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
security	www.security.samsungmobile.com/serviceWeb.smsb

21 Nov 2024 05:54Current

8.6High risk

Vulners AI Score8.6

CVSS 25.8

CVSS 3.18.8

EPSS0.00219

CWE-287