Vulnerabilities > Samsung > Android

DATE CVE VULNERABILITY TITLE RISK
2025-05-07 CVE-2025-20937 Out-of-bounds Write vulnerability in Samsung Android 13.0/14.0
Out-of-bounds write in Keymaster trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.
local
low complexity
samsung CWE-787
6.7
2025-05-07 CVE-2025-20953 Unspecified vulnerability in Samsung Android 13.0/14.0
Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch activities within SmartManagerCN.
local
low complexity
samsung
4.4
2025-05-07 CVE-2025-20954 Unspecified vulnerability in Samsung Android 13.0/14.0
Use of implicit intent for sensitive communication in EnrichedCall prior to SMR May-2025 Release 1 allows local attackers to access sensitive information.
local
low complexity
samsung
5.5
2025-05-07 CVE-2025-20955 Unspecified vulnerability in Samsung Android 13.0/14.0
Improper Export of Android Application Components in NotificationHistoryImageProvider prior to SMR May-2025 Release 1 allows local attackers to access notification images.
local
low complexity
samsung
5.5
2025-05-07 CVE-2025-20957 Unspecified vulnerability in Samsung Android 13.0/14.0
Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch arbitrary activities with SmartManagerCN privilege.
local
low complexity
samsung
7.8
2025-05-07 CVE-2025-20958 Unspecified vulnerability in Samsung Android 13.0/14.0
Improper verification of intent by broadcast receiver in UnifiedWFC prior to SMR May-2025 Release 1 allows local attackers to manipulate VoWiFi related behaviors.
local
low complexity
samsung
4.4
2025-05-07 CVE-2025-20959 Unspecified vulnerability in Samsung Android 13.0/14.0
Use of implicit intent for sensitive communication in Wi-Fi P2P service prior to SMR May-2025 Release 1 allows local attackers to access sensitive information.
local
low complexity
samsung
5.5
2025-05-07 CVE-2025-20960 Unspecified vulnerability in Samsung Android 13.0/14.0
Improper handling of insufficient permission in CocktailBarService prior to SMR May-2025 Release 1 allows local attackers to use the privileged api.
local
low complexity
samsung
3.3
2025-05-07 CVE-2025-20961 Unspecified vulnerability in Samsung Android 13.0/14.0
Improper handling of insufficient permission or privileges in sepunion service prior to SMR May-2025 Release 1 allows local privileged attackers to access files with system privilege.
local
low complexity
samsung
5.5
2025-05-07 CVE-2025-20962 Unspecified vulnerability in Samsung Android 13.0/14.0
Improper handling of insufficient permission in SpenGesture service prior to SMR May-2025 Release 1 allows local attackers to track the S Pen position.
local
low complexity
samsung
4.0