CVE-2025-21076

Medium CVSS: 5.5

Improper handling of insufficient permissions or privileges in Samsung Account prior to version 15.5.00.18 allows local attackers to access data in Samsung Account. User interaction is required for triggering this vulnerability.

Vendor

Samsung

Product

Account

CWE

NVD-CWE-Other

Yayın Tarihi

2025-11-05 06:15:33

Güncelleme

2025-11-07 13:02:25

Source Identifier

mobile.security@samsung.com

KEV Date Added

Kategoriler

NVD-CWE-Other Account MEDIUM Samsung 2025

Referanslar

https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=11

Benzer Kayıtlar

High

CVE-2025-54601

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor amd Wearable Processor Exynos 980, 850, 1080, 12…

Critical

CVE-2025-54328

An issue was discovered in SMS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 21…

High

CVE-2025-54602

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 12…

High

CVE-2025-57834

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem (Exynos 980, 850, 990, 1080, 2100, 12…

High

CVE-2025-54324

An issue was discovered in NAS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 21…

Critical

CVE-2025-58349

An issue was discovered in L2 in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 210…