|
195311
|
6.5 |
MEDIUM
Adjacent
|
google
|
android
|
SQL injection vulnerability in Bluetooth prior to SMR July-2021 Release 1 allows unauthorized access to paired device information
|
CWE-89
SQL Injection
|
CVE-2021-25427
|
2024-11-21 14:54 |
2021-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195312
|
7.5 |
HIGH
Network
|
google
|
android
|
Improper component protection vulnerability in SmsViewerActivity of Samsung Message prior to SMR July-2021 Release 1 allows untrusted applications to access Message files.
|
NVD-CWE-Other
|
CVE-2021-25426
|
2024-11-21 14:54 |
2021-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195313
|
7.8 |
HIGH
Local
|
suse
|
arpwatch
|
A UNIX Symbolic Link (Symlink) Following vulnerability in arpwatch of SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Manager Server 4.0, SUSE OpenStack Cloud Crowbar 9; openSUSE Factory, Leap 15.2 al…
|
NVD-CWE-Other
|
CVE-2021-25321
|
2024-11-21 14:54 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195314
|
5.3 |
MEDIUM
Network
|
samsung
|
health
|
Improper check vulnerability in Samsung Health prior to version 6.17 allows attacker to read internal cache data via exported component.
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2021-25425
|
2024-11-21 14:54 |
2021-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195315
|
8.8 |
HIGH
Adjacent
|
samsung
|
galaxy_watch_active_2_firmware
galaxy_watch_active_firmware
galaxy_watch_firmware
galaxy_watch_3_firmware
gear_s3_firmware
gear_s2_firmware
gear_s_firmware
gear_2_firmware
gea…
|
Improper authentication vulnerability in Tizen bluetooth-frwk prior to Firmware update JUN-2021 Release allows bluetooth attacker to take over the user's bluetooth device without user awareness.
|
CWE-287
Improper Authentication
|
CVE-2021-25424
|
2024-11-21 14:54 |
2021-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195316
|
5.5 |
MEDIUM
Local
|
samsung
|
watch_active2_plugin
|
Improper log management vulnerability in Watch Active2 PlugIn prior to 2.2.08.21033151 version allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone via log.
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2021-25423
|
2024-11-21 14:54 |
2021-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195317
|
5.5 |
MEDIUM
Local
|
samsung
|
watch_active_plugin
|
Improper log management vulnerability in Watch Active PlugIn prior to version 2.2.07.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log.
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2021-25422
|
2024-11-21 14:54 |
2021-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195318
|
5.5 |
MEDIUM
Local
|
samsung
|
galaxy_watch_3_plugin
|
Improper log management vulnerability in Galaxy Watch3 PlugIn prior to version 2.2.09.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log.
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2021-25421
|
2024-11-21 14:54 |
2021-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195319
|
5.5 |
MEDIUM
Local
|
samsung
|
galaxy_watch_plugin
|
Improper log management vulnerability in Galaxy Watch PlugIn prior to version 2.2.05.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log.
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2021-25420
|
2024-11-21 14:54 |
2021-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195320
|
6.5 |
MEDIUM
Network
|
samsung
|
internet
|
Non-compliance of recommended secure coding scheme in Samsung Internet prior to version 14.0.1.62 allows attackers to display fake URL in address bar via phising URL link.
|
NVD-CWE-noinfo
|
CVE-2021-25419
|
2024-11-21 14:54 |
2021-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
