Unprotected Component Flaw in Samsung Internet by Samsung
CVE-2021-25445

5.3MEDIUM

Key Information:

Vendor: Samsung
Status: Samsung Internet
Vendor: CVE Published:; 5 August 2021

Summary

A vulnerability exists in Samsung Internet that permits unauthorized applications to gain access to internal files, potentially compromising user data and application integrity. This flaw affects versions prior to 14.2, highlighting a significant risk for users who have not updated their browsers. To protect sensitive information and maintain optimal security hygiene, users are encouraged to upgrade to the latest version. For further details, visit the official Samsung security page.

Affected Version(s)

Samsung Internet - < 14.2

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2...

x_refsource_MISC

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 5, 2021
Vulnerability Reserved
Jan 19, 2021