CVE-2025-21060

Summary

Cleartext storage of sensitive information in Smart Switch prior to version 3.7.67.2 allows local attackers to access backup data from applications. User interaction is required for triggering this vulnerability.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSmart Switch3.7.67.2unaffected

Weaknesses

  • CWE-312 Cleartext Storage of Sensitive Information

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References