CVE-2021-25380
MEDIUMBixby <3.0.53.02 - RCE
Title source: llmDescription
Improper handling of exceptional conditions in Bixby prior to version 3.0.53.02 allows attacker to execute the actions registered by the user.
Scores
CVSS v3
5.8
EPSS
0.0031
EPSS Percentile
53.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L
Classification
CWE
CWE-755
CWE-703
Status
published
Affected Products (1)
samsung/bixby
< 3.0.53.02
Timeline
Published
Apr 09, 2021
Tracked Since
Feb 18, 2026