Vulnerability: Unauthorized Actions and Denial of Service Attack in Samsung Members

Vulnerability: Unauthorized Actions and Denial of Service Attack in Samsung Members

CVE-2021-25343 · LOW Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Calling of non-existent provider in Samsung Members prior to version 2.4.81.13 (in Android O(8.1) and below) and 3.8.00.13 (in Android P(9.0) and above) allows unauthorized actions including denial of service attack by hijacking the provider.

Learn more about our Cis Benchmark Audit For Google Android.