Vulnerability in Samsung Mobile Galaxy Watch Plugin
CVE-2021-25420
Improper log management vulnerability in Galaxy Watch PlugIn prior to version 2.2.05.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log.
EPSS: 0.001 (26.9th percentile) — read the EPSS interpretation.
Affected products
- Samsung Mobile Galaxy Watch Plugin — versions unspecified
Weakness classification (CWE)
References
- security.samsungmobile.com/serviceWeb.smsb (x_refsource_MISC)