CVE-2021-25422

Summary

Improper log management vulnerability in Watch Active PlugIn prior to version 2.2.07.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileWatch Active PlugInunspecified < 2.2.07.21033151affected

Weaknesses

  • CWE-779: CWE-779: Logging of Excessive Data

ADP Enrichment

CVE Program Container

Additional References

References