Improper Handling of Exceptional Conditions in Bixby by Samsung
CVE-2021-25380

5.8MEDIUM

Key Information:

Vendor

Samsung

Status
Vendor
CVE Published:
9 April 2021

What is CVE-2021-25380?

A vulnerability in Bixby versions prior to 3.0.53.02 allows an attacker to exploit improper handling of exceptional conditions. This flaw can lead to unauthorized execution of actions that users have registered, potentially compromising user privacy and security. To mitigate risks, users are encouraged to update to the latest version.

Affected Version(s)

Bixby < 3.0.53.02

References

CVSS V3.1

Score:
5.8
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.