CVE-2021-25432

LOW

Samsung Members <2.4.85.11-3.9.10.11 - Info Disclosure

Title source: llm

Description

Information exposure vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8.1) and below, and 3.9.10.11 in Android P(9.0) and above allows untrusted applications to access chat data.

References (1)

[Vendor Advisory] https://security.samsungmobile.com/serviceWeb.smsb?year=2021&month=7

Scores

CVSS v3 3.3

EPSS 0.0006

EPSS Percentile 20.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Classification

CWE

CWE-200 CWE-668

Status published

Affected Products (2)

samsung/samsung_members < 2.4.85.11

samsung/samsung_members

Timeline

Published Jul 08, 2021

Tracked Since Feb 18, 2026