CVE-2021-25369: Samsung Mobile Devices Improper Access Control
Samsung Mobile Devices Improper Access Control Vulnerability. Samsung mobile devices using Mali GPU contains an improper access control vulnerability in sec_log file. Exploitation of the vulnerability exposes sensitive kernel information to the userspace. This vulnerability was chained with CVE-2021-25337 and CVE-2021-25370.
- CISA KEV-listed (remediation due 2022-11-29)
- EPSS 0.2% (45.2% percentile)