CVE-2021-25337

Improper access control in clipboard service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows untrusted applications to read or...

Basic Information

CVE State: PUBLISHED
Reserved Date: January 19, 2021
Published Date: March 04, 2021
Last Updated: February 04, 2025
Vendor: Samsung Mobile
Product: Samsung Mobile Devices
Description: Improper access control in clipboard service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows untrusted applications to read or write certain local files.

CVSS Scores

CVSS v3.1

4.4 - MEDIUM

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

SSVC Information

Exploitation: active
Technical Impact: partial

Exploit Status

Exploited in the Wild: Yes (added 2022-11-08 00:00:00 UTC) Source

References

https://security.samsungmobile.com/securityUpdate.smsb https://security.samsungmobile.com

Known Exploited Vulnerability Information

Source	Added Date
CISA	2022-11-08 00:00:00 UTC