CVE-2021-25472 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2021-25472

CWE

https://cwe.mitre.org/data/definitions/264.html

An improper access control vulnerability in BluetoothSettingsProvider prior to SMR Oct-2021 Release 1 allows untrusted application to overwrite some Bluetooth information.

Affected Software

Name	Vendor	Start Version	End Version
Android	Google	8.1 (including)	8.1 (including)
Android	Google	9.0 (including)	9.0 (including)
Android	Google	10.0 (including)	10.0 (including)
Android	Google	11.0 (including)	11.0 (including)

References

https://security.samsungmobile.com/securityUpdate.smsb?year=2021\u0026month=10
https://security.samsungmobile.com/securityUpdate.smsb?year=2021\u0026month=10