CVE-2025-20939
published 2025-04-08CVE-2025-20939: Improper authorization in wireless download protocol in Galaxy Watch prior to SMR Apr-2025 Release 1 allows physical attackers to update device unique…
medium5.4CVSS 3.1
AVPACLPRNUIRSUCLIHAL
Improper authorization in wireless download protocol in Galaxy Watch prior to SMR Apr-2025 Release 1 allows physical attackers to update device unique identifier of Watch devices.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| samsung | wear_os | — | — |