What is the severity of CVE-2021-25436?

CVE-2021-25436 has been classified as a critical severity vulnerability due to its potential for arbitrary code execution.

How do I fix CVE-2021-25436?

To fix CVE-2021-25436, update your Tizen software to the JUL-2021 Release version or later that addresses this vulnerability.

What versions of Tizen are affected by CVE-2021-25436?

CVE-2021-25436 affects Tizen versions prior to 5.5 and specifically those before the JUL-2021 Release.

What type of vulnerability is CVE-2021-25436?

CVE-2021-25436 is an improper input validation vulnerability that allows for arbitrary code execution.

Who is affected by CVE-2021-25436?

Users of Tizen devices that utilize the Firmware Over-The-Air (FOTA) service before the JUL-2021 Release are affected by CVE-2021-25436.

Vulnerability/
CVE-2021-25436

critical

9.8

CWE

8/7/2021

3/8/2024

CVE-2021-25436: Input Validation

First published: Thu Jul 08 2021(Updated: )

Improper input validation vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows arbitrary code execution via Samsung Accessory Protocol.

Credit: mobile.security@samsung.com

Affected Software	Affected Version	How to fix
Linux Tizen	<5.5

Never miss a vulnerability like this again

Reference Links

https://security.samsungmobile.com/serviceWeb.smsb?year=2021&month=7

Frequently Asked Questions

What is the severity of CVE-2021-25436?
CVE-2021-25436 has been classified as a critical severity vulnerability due to its potential for arbitrary code execution.
How do I fix CVE-2021-25436?
To fix CVE-2021-25436, update your Tizen software to the JUL-2021 Release version or later that addresses this vulnerability.
What versions of Tizen are affected by CVE-2021-25436?
CVE-2021-25436 affects Tizen versions prior to 5.5 and specifically those before the JUL-2021 Release.
What type of vulnerability is CVE-2021-25436?
CVE-2021-25436 is an improper input validation vulnerability that allows for arbitrary code execution.
Who is affected by CVE-2021-25436?
Users of Tizen devices that utilize the Firmware Over-The-Air (FOTA) service before the JUL-2021 Release are affected by CVE-2021-25436.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/references
agent/severity
agent/weakness
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/linux
canonical/linux tizen

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2021-25436?
CVE-2021-25436 has been classified as a critical severity vulnerability due to its potential for arbitrary code execution.
How do I fix CVE-2021-25436?
To fix CVE-2021-25436, update your Tizen software to the JUL-2021 Release version or later that addresses this vulnerability.
What versions of Tizen are affected by CVE-2021-25436?
CVE-2021-25436 affects Tizen versions prior to 5.5 and specifically those before the JUL-2021 Release.
What type of vulnerability is CVE-2021-25436?
CVE-2021-25436 is an improper input validation vulnerability that allows for arbitrary code execution.
Who is affected by CVE-2021-25436?
Users of Tizen devices that utilize the Firmware Over-The-Air (FOTA) service before the JUL-2021 Release are affected by CVE-2021-25436.