CVE-2025-21040

3 documents3 sources
Severity
3.3LOW
EPSS
0.0%
top 94.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Samsung Sassistant
Timeline
PublishedSep 3
Latest updateSep 5

Description

Improper verification of intent by ExternalBroadcastReceiver in S Assistant prior to version 9.3.2 allows local attackers to modify itinerary information.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:LExploitability: 2.5 | Impact: 2.5

Affected Packages1 packages

NVDsamsung/sassistant< 9.3.2

🔴Vulnerability Details

2
GHSA
GHSA-2hj9-f386-5hvr: Improper verification of intent by ExternalBroadcastReceiver in S Assistant prior to version 92025-09-05
CVEList
CVE-2025-21040: Improper verification of intent by ExternalBroadcastReceiver in S Assistant prior to version 92025-09-03
CVE-2025-21040 (LOW CVSS 3.3) | Improper verification of intent by | cvebase.io