← back
CVE-2021-25343

CVE-2021-25343

CVSS 4 MEDIUMEPSS 0.2%CWE-287
Calling of non-existent provider in Samsung Members prior to version 2.4.81.13 (in Android O(8.1) and below) and 3.8.00.13 (in Android P(9.0) and above) allows unauthorized actions including denial of service attack by hijacking the provider.
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected products
Samsung Mobile · Samsung Members

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://security.samsungmobile.com/https://security.samsungmobile.com/serviceWeb.smsb