CVE-2021-25423

Summary

Improper log management vulnerability in Watch Active2 PlugIn prior to 2.2.08.21033151 version allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone via log.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileWatch Active2 PlugInunspecified < 2.2.08.21033151affected

Weaknesses

  • CWE-779: CWE-779: Logging of Excessive Data

ADP Enrichment

CVE Program Container

Additional References

References