PULSE
LIVE22signals / 24h
FEED
ransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcareransomkrybit reclama a www.lagus.cz · CZ · Business Servicesransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcareransomkrybit reclama a www.lagus.cz · CZ · Business Services
← All CVEs
CVE Watch

CVE-2021-25369

Samsung Mobile Devices Improper Access Control Vulnerability

CVSS

No CVSS

EPSS

1.1%

p63

KEV

YES

Nov 8, 2022

Exploit Today

69

0-100

Published: · Last modified:

EPSS · 30d
1.1%EPSS · 30 days1.1%
2026-06-302026-07-16
KEV catalog record

Product

Samsung / Mobile Devices

Vulnerability

Samsung Mobile Devices Improper Access Control Vulnerability

Added to KEV

Nov 8, 2022

Remediate by

Nov 29, 2022

Known ransomware use

No

Summary description

Samsung mobile devices using Mali GPU contains an improper access control vulnerability in sec_log file. Exploitation of the vulnerability exposes sensitive kernel information to the userspace. This vulnerability was chained with CVE-2021-25337 and CVE-2021-25370.

Required action

Apply updates per vendor instructions.

Notes

https://security.samsungmobile.com/securityUpdate.smsb; https://nvd.nist.gov/vuln/detail/CVE-2021-25369

Related CVEs
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2025-21042
95.6%
KEV79Samsung Mobile Devices Out-of-Bounds Write Vulnerability
CVE-2021-25337
85.0%
KEV76Samsung Mobile Devices Improper Access Control Vulnerability
CVE-2023-21492
83.3%
KEV75Samsung Mobile Devices Insertion of Sensitive Information Into Log File Vulnerability
CVE-2025-21043
70.1%
KEV71Samsung Mobile Devices Out-of-Bounds Write Vulnerability
CVE-2021-25370
55.3%
KEV67Samsung Mobile Devices Memory Corruption Vulnerability
CVE-2021-25372
52.6%
KEV66Samsung Mobile Devices Improper Boundary Check Vulnerability