CVE-2021-25377

Summary

Intent redirection in Samsung Experience Service versions 10.8.0.4 in Android P(9.0) below, and 12.2.0.5 in Android Q(10.0) above allows attacker to execute privileged action.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Experience ServiceAndroid P(9.0) below < 10.8.0.4affected
Samsung MobileSamsung Experience ServiceAndroid Q(10.0) above < 12.2.0.5affected

Weaknesses

  • CWE-287: CWE-287 Improper Authentication

ADP Enrichment

CVE Program Container

Additional References

References