Vulnerabilities > CVE-2021-25353 - Unspecified vulnerability in Samsung Galaxy Themes

047910
CVSS 3.6 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
NONE
local
low complexity
samsung

Summary

Using empty PendingIntent in Galaxy Themes prior to version 5.2.00.1215 allows local attackers to read/write private file directories of Galaxy Themes application without permission via hijacking the PendingIntent.

Vulnerable Configurations

Part Description Count
Application
Samsung
1