Vulnerabilities > CVE-2021-25404 - Insecure Storage of Sensitive Information vulnerability in Samsung Smartthings Firmware

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
local
low complexity
samsung
CWE-922
NVD
Published: 2021-06-11
Updated: 2021-06-21

Summary

Information Exposure vulnerability in SmartThings prior to version 1.7.64.21 allows attacker to access user information via log.

Vulnerable Configurations

Part Description Count
OS
Samsung
1
Hardware
Samsung
1

Common Weakness Enumeration (CWE)

References