Vulnerability in Samsung Mobile Galaxy Watch3 Plugin
CVE-2021-25421
Improper log management vulnerability in Galaxy Watch3 PlugIn prior to version 2.2.09.21033151 allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone within log.
EPSS: 0.001 (26.9th percentile) — read the EPSS interpretation.
Affected products
- Samsung Mobile Galaxy Watch3 Plugin — versions unspecified
Weakness classification (CWE)
References
- security.samsungmobile.com/serviceWeb.smsb (x_refsource_MISC)