Insecure Storage of Sensitive Information
CVE-2021-25523
Summary
Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows attacker to get Samsung Account ID.
- LOW
- LOCAL
- NONE
- UNCHANGED
- NONE
- NONE
- LOW
- NONE
CWE-922 - Insecure Storage of Sensitive Information
The software stores sensitive information without properly limiting read or write access by unauthorized actors.
References
Advisory Timeline
- Published
