Improper Synchronization Logic in Samsung Email Allows Plain Text Message Leakage

CVE-2021-25376 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

An improper synchronization logic in Samsung Email prior to version 6.1.41.0 can leak messages in certain mailbox in plain text when STARTTLS negotiation is failed.

Learn more about our Web Application Penetration Testing UK.