CVE-2021-25337
Samsung Mobile Devices Improper Access Control Vulnerability
CVSS
—
No CVSS
EPSS
2.8%
p85
KEV
YES
Nov 8, 2022
Exploit Today
76
0-100
Published: — · Last modified: —
2.8%EPSS · 30 days2.8%
2026-06-302026-07-16
Product
Samsung / Mobile Devices
Vulnerability
Samsung Mobile Devices Improper Access Control Vulnerability
Added to KEV
Nov 8, 2022
Remediate by
Nov 29, 2022
Known ransomware use
No
Summary description
Samsung mobile devices contain an improper access control vulnerability in clipboard service which allows untrusted applications to read or write arbitrary files. This vulnerability was chained with CVE-2021-25369 and CVE-2021-25370.
Required action
Apply updates per vendor instructions.
Notes
https://security.samsungmobile.com/securityUpdate.smsb; https://nvd.nist.gov/vuln/detail/CVE-2021-25337
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2025-21042—95.6%
KEV—79Samsung Mobile Devices Out-of-Bounds Write Vulnerability—CVE-2023-21492—83.3%
KEV—75Samsung Mobile Devices Insertion of Sensitive Information Into Log File Vulnerability—CVE-2025-21043—70.1%
KEV—71Samsung Mobile Devices Out-of-Bounds Write Vulnerability—CVE-2021-25369—62.5%
KEV—69Samsung Mobile Devices Improper Access Control Vulnerability—CVE-2021-25370—55.3%
KEV—67Samsung Mobile Devices Memory Corruption Vulnerability—CVE-2021-25372—52.6%
KEV—66Samsung Mobile Devices Improper Boundary Check Vulnerability—