CVE-2021-25353

Using empty PendingIntent in Galaxy Themes prior to version 5.2.00.1215 allows local attackers to read/write private file directories of Galaxy Themes application without permission via hijacking the PendingIntent.

Summary:

Using empty PendingIntent in Galaxy Themes prior to version 5.2.00.1215 allows local attackers to read/write private file directories of Galaxy Themes application without permission via hijacking the PendingIntent.

Reference Links(if available):

  • https://security.samsungmobile.com/serviceWeb.smsb
  • https://security.samsungmobile.com/
  • CVSS Score (if available)

    v2: / LOW

    v3: /

    Links to Exploits(if available)