CVE-2021-25439

Summary

Improper access control vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8.1) and below, and 3.9.10.11 in Android P(9.0) and above allows untrusted applications to cause arbitrary webpage loading in webview.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Members- < 2.4.85.11 in Android O(8.1) and below, and 3.9.10.11 in Android P(9.0) and aboveaffected

Weaknesses

  • CWE-284: CWE-284 Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References