CVE-2021-25437
published 2021-07-08CVE-2021-25437: Improper access control vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows attackers to arbitrary code execution by replacing…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Improper access control vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows attackers to arbitrary code execution by replacing FOTA update file.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | tizen | < 5.5 | 5.5 |
| samsung_mobile | tizen_wearable_devices | >= Tizen 5.5 < Firmware update JUL-2021 Release | Firmware update JUL-2021 Release |