PT-2021-16541 · Samsung · Samsung Internet
Published
2021-03-04
·
Updated
2021-03-05
·
CVE-2021-25348
CVSS v3.1
2.4
Low
| Vector | AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Samsung Internet versions prior to 13.0.1.60
Description:
The issue is related to an improper permission grant check, allowing access to files in internal storage without the authorized STORAGE permission. This affects Samsung Internet, enabling unauthorized access to internal storage files.
Recommendations:
For versions prior to 13.0.1.60, update to version 13.0.1.60 or later to resolve the issue. As a temporary workaround, consider restricting access to internal storage files until the update is applied.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Samsung Internet