Vulnerability in Samsung Mobile Watch Active2 Plugin
CVE-2021-25423
Improper log management vulnerability in Watch Active2 PlugIn prior to 2.2.08.21033151 version allows attacker with log permissions to leak Wi-Fi password connected to the user smartphone via log.
EPSS: 0.001 (26.9th percentile) — read the EPSS interpretation.
Affected products
- Samsung Mobile Watch Active2 Plugin — versions unspecified
Weakness classification (CWE)
References
- security.samsungmobile.com/serviceWeb.smsb (x_refsource_MISC)