Vulnerabilities > CVE-2021-25522 - Insecure Storage of Sensitive Information vulnerability in Samsung Smart Capture

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

samsung

CWE-922

NVD

Published: 2021-12-08

Updated: 2021-12-13

Summary

Insecure storage of sensitive information vulnerability in Smart Capture prior to version 4.8.02.10 allows attacker to access victim's captured images without permission.

Vulnerable Configurations

Part	Description	Count
Application	Samsung Samsung Smart Capture *	1

Common Weakness Enumeration (CWE)

CWE-922 - Insecure Storage of Sensitive Information

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2021&month=12