CVE-2021-25436
published 2021-07-08CVE-2021-25436: Improper input validation vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows arbitrary code execution via Samsung Accessory…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Improper input validation vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows arbitrary code execution via Samsung Accessory Protocol.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | tizen | < 5.5 | 5.5 |
| samsung_mobile | tizen_wearable_devices | >= Tizen 5.5 < Firmware update JUL-2021 Release | Firmware update JUL-2021 Release |