PT-2021-16635 · Samsung · Samsung Internet

Sayed Abdelhafiz

·

Published

2021-08-05

·

Updated

2021-08-12

·

CVE-2021-25445

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions: Samsung Internet versions prior to 14.2
Description: The issue allows an untrusted application to access internal files in Samsung Internet due to an unprotected component vulnerability.
Recommendations: For versions prior to 14.2, update to version 14.2 or later to resolve the issue.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2021-25445

Affected Products

Samsung Internet