CVE-2025-21019
CVE-2025-21019
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.5EPSS 0.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
06 Aug 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Improper authorization in Samsung Health prior to version 6.30.1.003 allows local attackers to access data in Samsung Health. User interaction is required for triggering this vulnerability.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Affected products
Samsung Mobile · Samsung HealthWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →