Samsung Android vulnerabilities

CVE-2025-21032 [MEDIUM] CVE-2025-21032: Improper access control in One UI Home prior to SMR Sep-2025 Release 1 allows physical attackers to Improper access control in One UI Home prior to SMR Sep-2025 Release 1 allows physical attackers to bypass Kiosk mode under limited conditions.

CVE-2025-21041 [MEDIUM] CWE-922 CVE-2025-21041: Insecure Storage of Sensitive Information in Secure Folder prior to Android 16 allows local attacker Insecure Storage of Sensitive Information in Secure Folder prior to Android 16 allows local attackers to access sensitive information.

CVE-2025-21028 [MEDIUM] CVE-2025-21028: Improper privilege management in ThemeManager prior to SMR Sep-2025 Release 1 allows local privilege Improper privilege management in ThemeManager prior to SMR Sep-2025 Release 1 allows local privileged attackers to reuse trial items.

CVE-2025-21025 [MEDIUM] CVE-2025-21025: Improper access control in MARsExemptionManager prior to SMR Sep-2025 Release 1 allows local attacke Improper access control in MARsExemptionManager prior to SMR Sep-2025 Release 1 allows local attackers to be excluded from background execution management.

CVE-2023-21472 [MEDIUM] CWE-20 CVE-2023-21472: Improper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1 allows Improper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1 allows a physical attacker to execute arbitrary code in bootloader.

CVE-2023-21477 [MEDIUM] CWE-125 CVE-2023-21477: Access of Memory Location After End of Buffer vulnerability in TIGERF trustlet prior to SMR Apr-2023 Access of Memory Location After End of Buffer vulnerability in TIGERF trustlet prior to SMR Apr-2023 Release 1 allows local attackers to access protected data.

CVE-2023-21478 [MEDIUM] CVE-2023-21478: Improper input validation vulnerability in TIGERF trustlet prior to SMR Apr-2023 Release 1 allows lo Improper input validation vulnerability in TIGERF trustlet prior to SMR Apr-2023 Release 1 allows local attackers to access protected data.

CVE-2025-21033 [MEDIUM] CVE-2025-21033: Improper access control in ContactProvider prior to SMR Sep-2025 Release 1 allows local attackers to Improper access control in ContactProvider prior to SMR Sep-2025 Release 1 allows local attackers to access sensitive information.

CVE-2025-21029 [LOW] CVE-2025-21029: Improper handling of insufficient permission in System UI prior to SMR Sep-2025 Release 1 allows loc Improper handling of insufficient permission in System UI prior to SMR Sep-2025 Release 1 allows local attackers to send arbitrary replies to messages from the cover display.

CVE-2025-21026 [LOW] CVE-2025-21026: Improper handling of insufficient permission in ImsService prior to SMR Sep-2025 Release 1 allows lo Improper handling of insufficient permission in ImsService prior to SMR Sep-2025 Release 1 allows local attackers to interrupt the call.

CVE-2023-21471 [LOW] CWE-287 CVE-2023-21471: Improper access control vulnerability in SemClipboard prior to SMR Apr-2023 Release 1 allows attacke Improper access control vulnerability in SemClipboard prior to SMR Apr-2023 Release 1 allows attackers to read arbitrary files with system permission.

CVE-2023-21469 [LOW] CVE-2023-21469: Improper access control vulnerability in SLocation prior to SMR Apr-2022 Release 1 allows local atta Improper access control vulnerability in SLocation prior to SMR Apr-2022 Release 1 allows local attackers to get device location information using com.samsung.android.wifi.GEOFENCE action.

CVE-2023-21470 [LOW] CVE-2023-21470: Improper access control vulnerability in SLocation prior to SMR Apr-2022 Release 1 allows local atta Improper access control vulnerability in SLocation prior to SMR Apr-2022 Release 1 allows local attackers to get device location information using com.samsung.android.wifi.NETWORK_LOCATION action.

CVE-2023-21466 [LOW] CWE-287 CVE-2023-21466: PendingIntent hijacking vulnerability in CertificatePolicy in framework prior to SMR Apr-2023 Releas PendingIntent hijacking vulnerability in CertificatePolicy in framework prior to SMR Apr-2023 Release 1 allows local attackers to access contentProvider without proper permission.

CVE-2025-21015 [HIGH] CWE-22 CVE-2025-21015: Path Traversal in Document scanner prior to SMR Aug-2025 Release 1 allows local attackers to delete Path Traversal in Document scanner prior to SMR Aug-2025 Release 1 allows local attackers to delete file with Document scanner's privilege.

CVE-2025-21010 [MEDIUM] CVE-2025-21010: Improper privilege management in SamsungAccount prior to SMR Aug-2025 Release 1 allows local privile Improper privilege management in SamsungAccount prior to SMR Aug-2025 Release 1 allows local privileged attackers to deactivate Samsung account.

CVE-2025-21014 [MEDIUM] CVE-2025-21014: Improper export of android application component in Emergency SoS prior to SMR Aug-2025 Release 1 al Improper export of android application component in Emergency SoS prior to SMR Aug-2025 Release 1 allows local attackers to access sensitive information.

CVE-2025-20990 [LOW] CVE-2025-20990: Improper access control in accessing system device node prior to SMR Aug-2025 Release 1 allows local Improper access control in accessing system device node prior to SMR Aug-2025 Release 1 allows local attackers to access device identifier.

CVE-2025-21006 [HIGH] CWE-787 CVE-2025-21006: Out-of-bounds write in handling of macro blocks for MPEG4 codec in libsavsvc.so prior to Android 15 Out-of-bounds write in handling of macro blocks for MPEG4 codec in libsavsvc.so prior to Android 15 allows local attackers to write out-of-bounds memory.

CVE-2025-21008 [MEDIUM] CWE-125 CVE-2025-21008: Out-of-bounds read in decoding frame header in libsavsvc.so prior to Android 15 allows local attacke Out-of-bounds read in decoding frame header in libsavsvc.so prior to Android 15 allows local attackers to cause memory corruption.