CVE-2021-25332

Summary

Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to contacts information over the lockscreen in specific condition.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Pay Miniunspecified < 4.0.14affected

Weaknesses

  • CWE-200: CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

ADP Enrichment

CVE Program Container

Additional References

References