Intent Redirection Vulnerability in Gallery by Samsung
CVE-2021-25379

4MEDIUM

Key Information:

Vendor: Samsung
Status: Gallery
Vendor: CVE Published:; 9 April 2021

Summary

The vulnerability presents an intent redirection flaw in Samsung's Gallery application, allowing attackers to carry out privileged actions without proper authorization. This issue affects versions prior to 5.4.16.1. It poses a risk by potentially enabling unauthorized manipulation of application behavior, thus exposing users to a range of security threats.

Affected Version(s)

Gallery Android O(8.x) < 5.4.16.1

References

https://security.samsungmobile.com/

x_refsource_CONFIRM

https://security.samsungmobile.com/serviceWeb.smsb

x_refsource_CONFIRM

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 9, 2021
Vulnerability Reserved
Jan 19, 2021