CVE-2021-25369β€”Samsung Mobile Devices Improper Access Control Vulnerability

PUBLISHEDvulnerability record
2022-11-08 Β· last modified June 21, 2025

Metadata

CVE ID:
CVE-2021-25369
Project:
Samsung
Product:
Mobile Devices
Date Added:
2022-11-08
Due Date:
2022-11-29
Last Updated:
June 21, 2025

Vulnerability Name

Samsung Mobile Devices Improper Access Control Vulnerability

Description

Samsung mobile devices using Mali GPU contains an improper access control vulnerability in sec_log file. Exploitation of the vulnerability exposes sensitive kernel information to the userspace. This vulnerability was chained with CVE-2021-25337 and CVE-2021-25370.

Known To Be Used in Ransomware Campaigns?

Ransomware Status:
Unknown

Action

Apply updates per vendor instructions.

Additional Notes

Related Weaknesses