CVE-2025-20996
published 2025-06-04CVE-2025-20996: Improper authorization in Smart Switch installed on non-Samsung Device prior to version 3.7.64.10 allows local attackers to read data with the privilege of…
medium5CVSS 3.1
AVLACLPRLUIRSUCHINAN
Improper authorization in Smart Switch installed on non-Samsung Device prior to version 3.7.64.10 allows local attackers to read data with the privilege of Smart Switch. User interaction is required for triggering this vulnerability.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| samsung | smart_switch | < 3.7.64.10 | 3.7.64.10 |