CVE-2021-25424
published 2021-06-11CVE-2021-25424: Improper authentication vulnerability in Tizen bluetooth-frwk prior to Firmware update JUN-2021 Release allows bluetooth attacker to take over the user's…
high8.8CVSS 3.1
AVAACLPRNUINSUCHIHAH
Improper authentication vulnerability in Tizen bluetooth-frwk prior to Firmware update JUN-2021 Release allows bluetooth attacker to take over the user's bluetooth device without user awareness.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| samsung | galaxy_watch_3_firmware | < 5.5 | 5.5 |
| samsung | galaxy_watch_active_2_firmware | < 5.5 | 5.5 |
| samsung | galaxy_watch_active_firmware | < 5.5 | 5.5 |
| samsung | galaxy_watch_firmware | < 5.5 | 5.5 |
| samsung | gear_2_firmware | < 5.5 | 5.5 |
| samsung | gear_2_neo_firmware | < 5.5 | 5.5 |
| samsung | gear_s2_firmware | < 5.5 | 5.5 |
| samsung | gear_s3_firmware | < 5.5 | 5.5 |
| samsung | gear_s_firmware | < 5.5 | 5.5 |
| samsung_mobile | tizen_wearable_devices | >= 5.5 < Firmware update JUN-2021 Release | Firmware update JUN-2021 Release |