CVE-2021-25376

Summary

An improper synchronization logic in Samsung Email prior to version 6.1.41.0 can leak messages in certain mailbox in plain text when STARTTLS negotiation is failed.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Emailunspecified < 6.1.41.0affected

Weaknesses

  • CWE-200: CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

ADP Enrichment

CVE Program Container

Additional References

References