CVE-2021-25350

CWE-200Information ExposureCWE-532Log File Information Exposure3 documents3 sources
Severity
3.9LOW
EPSS
0.0%
top 85.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Samsung Mobile Samsung AccountSamsung Account
Timeline
PublishedMar 25
Latest updateMay 24

Description

Information Exposure vulnerability in Samsung Account prior to version 12.1.1.3 allows physically proximate attackers to access user information via log.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:NExploitability: 0.6 | Impact: 1.4

Affected Packages2 packages

NVDsamsung/account< 12.1.1.3
CVEListV5samsung_mobile/samsung_accountAndroid Q(10.0)12.1.1.3

🔴Vulnerability Details

2
GHSA
GHSA-v6fx-59rv-2m7q: Information Exposure vulnerability in Samsung Account prior to version 122022-05-24
CVEList
CVE-2021-25350: Information Exposure vulnerability in Samsung Account prior to version 122021-03-25
CVE-2021-25350 (LOW CVSS 3.9) | Information Exposure vulnerability | cvebase.io