Vulnerabilities > Samsung > Android
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-07 | CVE-2025-20937 | Out-of-bounds Write vulnerability in Samsung Android 13.0/14.0 Out-of-bounds write in Keymaster trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to write out-of-bounds memory. | 6.7 |
| 2025-05-07 | CVE-2025-20953 | Unspecified vulnerability in Samsung Android 13.0/14.0 Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch activities within SmartManagerCN. | 4.4 |
| 2025-05-07 | CVE-2025-20954 | Unspecified vulnerability in Samsung Android 13.0/14.0 Use of implicit intent for sensitive communication in EnrichedCall prior to SMR May-2025 Release 1 allows local attackers to access sensitive information. | 5.5 |
| 2025-05-07 | CVE-2025-20955 | Unspecified vulnerability in Samsung Android 13.0/14.0 Improper Export of Android Application Components in NotificationHistoryImageProvider prior to SMR May-2025 Release 1 allows local attackers to access notification images. | 5.5 |
| 2025-05-07 | CVE-2025-20957 | Unspecified vulnerability in Samsung Android 13.0/14.0 Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch arbitrary activities with SmartManagerCN privilege. | 7.8 |
| 2025-05-07 | CVE-2025-20958 | Unspecified vulnerability in Samsung Android 13.0/14.0 Improper verification of intent by broadcast receiver in UnifiedWFC prior to SMR May-2025 Release 1 allows local attackers to manipulate VoWiFi related behaviors. | 4.4 |
| 2025-05-07 | CVE-2025-20959 | Unspecified vulnerability in Samsung Android 13.0/14.0 Use of implicit intent for sensitive communication in Wi-Fi P2P service prior to SMR May-2025 Release 1 allows local attackers to access sensitive information. | 5.5 |
| 2025-05-07 | CVE-2025-20960 | Unspecified vulnerability in Samsung Android 13.0/14.0 Improper handling of insufficient permission in CocktailBarService prior to SMR May-2025 Release 1 allows local attackers to use the privileged api. | 3.3 |
| 2025-05-07 | CVE-2025-20961 | Unspecified vulnerability in Samsung Android 13.0/14.0 Improper handling of insufficient permission or privileges in sepunion service prior to SMR May-2025 Release 1 allows local privileged attackers to access files with system privilege. | 5.5 |
| 2025-05-07 | CVE-2025-20962 | Unspecified vulnerability in Samsung Android 13.0/14.0 Improper handling of insufficient permission in SpenGesture service prior to SMR May-2025 Release 1 allows local attackers to track the S Pen position. | 4.0 |