CVE-2021-25432

2021-07-0813:45:43

CWE-200

Samsung Mobile

www.cve.org

information exposure

samsung members

untrusted applications

chat data

android o

android p

AI Score

4.2

Confidence

High

EPSS

Percentile

5.1%

JSON

Information exposure vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8.1) and below, and 3.9.10.11 in Android P(9.0) and above allows untrusted applications to access chat data.

CNA Affected

[
  {
    "product": "Samsung Members",
    "vendor": "Samsung Mobile",
    "versions": [
      {
        "lessThan": "2.4.85.11 in Android O(8.1) and below, and 3.9.10.11 in Android P(9.0) and above",
        "status": "affected",
        "version": "-",
        "versionType": "custom"
      }
    ]
  }
]

References

security.samsungmobile.com/serviceWeb.smsb?year=2021&month=7