Bixby Voice Implicit Intent Hijacking Vulnerability

Bixby Voice Implicit Intent Hijacking Vulnerability

CVE-2021-25352 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Using PendingIntent with implicit intent in Bixby Voice prior to version 3.0.52.14 allows attackers to execute privileged action by hijacking and modifying the intent.

Learn more about our Web Application Penetration Testing UK.