CVE-2021-25402Insecure Storage of Sensitive Information in Mobile Samsung Notes

CWE-922Insecure Storage of Sensitive Information3 documents3 sources
Severity
3.3LOWNVD
EPSS
0.1%
top 79.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Samsung Mobile Samsung NotesSamsung Notes
Timeline
PublishedJun 11
Latest updateMay 24

Description

Information Exposure vulnerability in Samsung Notes prior to version 4.2.04.27 allows attacker to access s pen latency information.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

NVDsamsung/notes< 4.2.04.27
CVEListV5samsung_mobile/samsung_notesunspecified4.2.04.27

🔴Vulnerability Details

2
GHSA
GHSA-f3wg-x6pw-j7fx: Information Exposure vulnerability in Samsung Notes prior to version 42022-05-24
CVEList
CVE-2021-25402: Information Exposure vulnerability in Samsung Notes prior to version 42021-06-11
CVE-2021-25402 — Mobile Samsung Notes vulnerability | cvebase