Samsung

Android

374 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4

CVE-2025-20962

  • EPSS 0.02%
  • Published 07.05.2025 08:24:16
  • Last modified 21.05.2025 19:47:47

Improper handling of insufficient permission in SpenGesture service prior to SMR May-2025 Release 1 allows local attackers to track the S Pen position.

5.5

CVE-2025-20961

  • EPSS 0.01%
  • Published 07.05.2025 08:24:14
  • Last modified 21.05.2025 19:47:53

Improper handling of insufficient permission or privileges in sepunion service prior to SMR May-2025 Release 1 allows local privileged attackers to access files with system privilege.

3.3

CVE-2025-20960

  • EPSS 0.02%
  • Published 07.05.2025 08:24:13
  • Last modified 21.05.2025 19:48:00

Improper handling of insufficient permission in CocktailBarService prior to SMR May-2025 Release 1 allows local attackers to use the privileged api.

5.5

CVE-2025-20959

  • EPSS 0.01%
  • Published 07.05.2025 08:24:12
  • Last modified 21.05.2025 19:48:04

Use of implicit intent for sensitive communication in Wi-Fi P2P service prior to SMR May-2025 Release 1 allows local attackers to access sensitive information.

4.4

CVE-2025-20958

  • EPSS 0.02%
  • Published 07.05.2025 08:24:10
  • Last modified 21.05.2025 19:48:13

Improper verification of intent by broadcast receiver in UnifiedWFC prior to SMR May-2025 Release 1 allows local attackers to manipulate VoWiFi related behaviors.

7.8

CVE-2025-20957

  • EPSS 0.01%
  • Published 07.05.2025 08:24:08
  • Last modified 21.05.2025 19:48:24

Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch arbitrary activities with SmartManagerCN privilege.

5.5

CVE-2025-20955

  • EPSS 0.01%
  • Published 07.05.2025 08:24:06
  • Last modified 21.05.2025 19:48:29

Improper Export of Android Application Components in NotificationHistoryImageProvider prior to SMR May-2025 Release 1 allows local attackers to access notification images.

5.5

CVE-2025-20954

  • EPSS 0.01%
  • Published 07.05.2025 08:24:05
  • Last modified 13.05.2025 20:21:50

Use of implicit intent for sensitive communication in EnrichedCall prior to SMR May-2025 Release 1 allows local attackers to access sensitive information. User interaction is required for triggering this vulnerability.

4.4

CVE-2025-20953

  • EPSS 0.02%
  • Published 07.05.2025 08:24:04
  • Last modified 13.05.2025 20:21:41

Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch activities within SmartManagerCN.

6.7

CVE-2025-20937

  • EPSS 0.01%
  • Published 07.05.2025 08:22:38
  • Last modified 13.05.2025 20:21:30

Out-of-bounds write in Keymaster trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.