CVE-2021-25405

An improper access control vulnerability in ScreenOffActivity in Samsung Notes prior to version 4.2.04.27 allows untrusted applications to access local files.
Configurations

Configuration 1 (hide)

cpe:2.3:a:samsung:notes:*:*:*:*:*:*:*:*

History

21 Nov 2024, 05:54

Type Values Removed Values Added
References () https://security.samsungmobile.com/serviceWeb.smsb?year=2021&month=5 - Vendor Advisory () https://security.samsungmobile.com/serviceWeb.smsb?year=2021&month=5 - Vendor Advisory

14 Jul 2022, 15:37

Type Values Removed Values Added
CWE CWE-863 NVD-CWE-Other

21 Jun 2021, 18:08

Type Values Removed Values Added
CPE cpe:2.3:a:samsung:notes:*:*:*:*:*:*:*:*
CWE CWE-863
References (MISC) https://security.samsungmobile.com/serviceWeb.smsb?year=2021&month=5 - (MISC) https://security.samsungmobile.com/serviceWeb.smsb?year=2021&month=5 - Vendor Advisory
CVSS v2 : unknown
v3 : unknown
v2 : 2.1
v3 : 5.5

11 Jun 2021, 15:30

Type Values Removed Values Added
New CVE

Information

Published : 2021-06-11 15:15

Updated : 2024-11-21 05:54


NVD link : CVE-2021-25405

Mitre link : CVE-2021-25405

CVE.ORG link : CVE-2021-25405


JSON object : View

Products Affected

samsung

  • notes
CWE
CWE-284

Improper Access Control

NVD-CWE-Other