CVE-2021-25425

CWE-703CWE-7543 documents3 sources
Severity
5.3MEDIUM
EPSS
0.4%
top 37.15%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Samsung Mobile Samsung HealthSamsung Health
Timeline
PublishedJun 11
Latest updateMay 24

Description

Improper check vulnerability in Samsung Health prior to version 6.17 allows attacker to read internal cache data via exported component.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

NVDsamsung/health< 6.17
CVEListV5samsung_mobile/samsung_healthunspecified6.17

🔴Vulnerability Details

2
GHSA
GHSA-rrj9-g495-q8w7: Improper check vulnerability in Samsung Health prior to version 62022-05-24
CVEList
CVE-2021-25425: Improper check vulnerability in Samsung Health prior to version 62021-06-11
CVE-2021-25425 (MEDIUM CVSS 5.3) | Improper check vulnerability in Sam | cvebase.io