CVE-2021-25405
published 2021-06-11CVE-2021-25405: An improper access control vulnerability in ScreenOffActivity in Samsung Notes prior to version 4.2.04.27 allows untrusted applications to access local files.
medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
An improper access control vulnerability in ScreenOffActivity in Samsung Notes prior to version 4.2.04.27 allows untrusted applications to access local files.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| samsung | notes | < 4.2.04.27 | 4.2.04.27 |
| samsung_mobile | samsung_notes | >= unspecified < 4.2.04.27 | 4.2.04.27 |