CVE-2021-25367Path Traversal in Mobile Samsung Notes

CWE-22Path Traversal3 documents3 sources
Severity
5.4MEDIUMNVD
CNA3.7
EPSS
0.2%
top 56.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Samsung Mobile Samsung NotesSamsung Notes
Timeline
PublishedMar 25
Latest updateMay 24

Description

Path Traversal vulnerability in Samsung Notes prior to version 4.2.00.22 allows attackers to access local files without permission.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.5

Affected Packages2 packages

NVDsamsung/notes< 4.2.00.22
CVEListV5samsung_mobile/samsung_notesunspecified4.2.00.22

🔴Vulnerability Details

2
GHSA
GHSA-3xpj-f7p8-8c96: Path Traversal vulnerability in Samsung Notes prior to version 42022-05-24
CVEList
CVE-2021-25367: Path Traversal vulnerability in Samsung Notes prior to version 42021-03-25
CVE-2021-25367 — Path Traversal in Mobile Samsung Notes | cvebase