CVE-2021-25424

2021-06-1114:33:46

CWE-287

Samsung Mobile

www.cve.org

tizen

bluetooth-frwk

authentication

vulnerability

firmware update jun-2021

bluetooth attacker

AI Score

8.9

Confidence

High

EPSS

0.001

Percentile

28.4%

JSON

Improper authentication vulnerability in Tizen bluetooth-frwk prior to Firmware update JUN-2021 Release allows bluetooth attacker to take over the user’s bluetooth device without user awareness.

CNA Affected

[
  {
    "product": "Tizen wearable devices",
    "vendor": "Samsung Mobile",
    "versions": [
      {
        "lessThan": "Firmware update JUN-2021 Release ",
        "status": "affected",
        "version": "5.5",
        "versionType": "custom"
      }
    ]
  }
]

References

security.samsungmobile.com/serviceWeb.smsb?year=2021&month=6