6.2
CVE-2025-21004
- EPSS 0.01%
- Veröffentlicht 08.07.2025 10:34:34
- Zuletzt bearbeitet 20.01.2026 14:41:30
- Quelle mobile.security@samsung.com
- CVE-Watchlists
- Unerledigt
LoginImproper verification of intent by broadcast receiver in System UI for Galaxy Watch prior to SMR Jul-2025 Release 1 allows local attackers to power off the device.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Samsung ≫ Wear Os Version5.0
Samsung ≫ Galaxy Watch Version-
Samsung ≫ Galaxy Watch 4 Version-
Samsung ≫ Galaxy Watch 4 Classic Version-
Samsung ≫ Galaxy Watch 5 Version-
Samsung ≫ Galaxy Watch 5 Pro Version-
Samsung ≫ Galaxy Watch 6 Version-
Samsung ≫ Galaxy Watch 6 Classic Version-
Samsung ≫ Galaxy Watch 7 Version-
Samsung ≫ Galaxy Watch Fe Version-
Samsung ≫ Galaxy Watch Ultra Version-
Samsung ≫ Galaxy Watch 4 Version-
Samsung ≫ Galaxy Watch 4 Classic Version-
Samsung ≫ Galaxy Watch 5 Version-
Samsung ≫ Galaxy Watch 5 Pro Version-
Samsung ≫ Galaxy Watch 6 Version-
Samsung ≫ Galaxy Watch 6 Classic Version-
Samsung ≫ Galaxy Watch 7 Version-
Samsung ≫ Galaxy Watch Fe Version-
Samsung ≫ Galaxy Watch Ultra Version-
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.01% | 0.013 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
| mobile.security@samsung.com | 6.2 | 2.5 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-347 Improper Verification of Cryptographic Signature
The product does not verify, or incorrectly verifies, the cryptographic signature for data.