Samsung Android vulnerabilities

CVE-2025-21005 [MEDIUM] CVE-2025-21005: Improper access control in isemtelephony prior to Android 15 allows local attackers to access sensit Improper access control in isemtelephony prior to Android 15 allows local attackers to access sensitive information.

CVE-2025-21003 [MEDIUM] CWE-922 CVE-2025-21003: Insecure storage of sensitive information in Emergency SOS prior to SMR Jul-2025 Release 1 allows lo Insecure storage of sensitive information in Emergency SOS prior to SMR Jul-2025 Release 1 allows local attackers to access sensitive information.

CVE-2025-21001 [MEDIUM] CVE-2025-21001: Improper access control in LeAudioService prior to SMR Jul-2025 Release 1 allows local attackers to Improper access control in LeAudioService prior to SMR Jul-2025 Release 1 allows local attackers to stop broadcasting Auracast.

CVE-2025-21007 [MEDIUM] CWE-787 CVE-2025-21007: Out-of-bounds write in accessing uninitialized memory in libsavsvc.so prior to Android 15 allows loc Out-of-bounds write in accessing uninitialized memory in libsavsvc.so prior to Android 15 allows local attackers to cause memory corruption.

CVE-2025-21002 [MEDIUM] CVE-2025-21002: Improper access control in LeAudioService prior to SMR Jul-2025 Release 1 allows local attackers to Improper access control in LeAudioService prior to SMR Jul-2025 Release 1 allows local attackers to manipulate broadcasting Auracast.

CVE-2025-21009 [MEDIUM] CWE-125 CVE-2025-21009: Out-of-bounds read in decoding malformed frame header in libsavsvc.so prior to Android 15 allows loc Out-of-bounds read in decoding malformed frame header in libsavsvc.so prior to Android 15 allows local attackers to cause memory corruption.

CVE-2025-20983 [MEDIUM] CWE-787 CVE-2025-20983: Out-of-bounds write in checking auth secret in KnoxVault trustlet prior to SMR Jul-2025 Release 1 al Out-of-bounds write in checking auth secret in KnoxVault trustlet prior to SMR Jul-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.

CVE-2025-20982 [MEDIUM] CWE-787 CVE-2025-20982: Out-of-bounds write in setting auth secret in KnoxVault trustlet prior to SMR Jul-2025 Release 1 all Out-of-bounds write in setting auth secret in KnoxVault trustlet prior to SMR Jul-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.

CVE-2025-20999 [LOW] CWE-863 CVE-2025-20999: Improper authorization in accessing saved Wi-Fi password for Galaxy Tablet prior to SMR Jul-2025 Rel Improper authorization in accessing saved Wi-Fi password for Galaxy Tablet prior to SMR Jul-2025 Release 1 allows secondary users to access owner's saved Wi-Fi password.

CVE-2025-21000 [LOW] CVE-2025-21000: Improper privilege management in Bluetooth prior to SMR Jul-2025 Release 1 allows local attackers to Improper privilege management in Bluetooth prior to SMR Jul-2025 Release 1 allows local attackers to enable Bluetooth.

CVE-2025-20992 [HIGH] CWE-125 CVE-2025-20992: Out-of-bound read in libsecimaging.camera.samsung.so prior to SMR Feb-2025 Release 1 allows local at Out-of-bound read in libsecimaging.camera.samsung.so prior to SMR Feb-2025 Release 1 allows local attackers to read out-of-bounds memory.

CVE-2025-20988 [HIGH] CWE-125 CVE-2025-20988: Out-of-bounds read in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privileged a Out-of-bounds read in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to read out-of-bounds memory.

CVE-2025-20981 [MEDIUM] CVE-2025-20981: Improper access control in AudioService prior to SMR Jun-2025 Release 1 allows local attackers to ac Improper access control in AudioService prior to SMR Jun-2025 Release 1 allows local attackers to access sensitive information.

CVE-2025-20987 [MEDIUM] CVE-2025-20987: Improper access control in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privile Improper access control in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to get a auth_token.

CVE-2025-20989 [MEDIUM] CVE-2025-20989: Improper logging in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privileged att Improper logging in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to get a hmac_key.

CVE-2025-20991 [MEDIUM] CVE-2025-20991: Improper export of Android application components in Bluetooth prior to SMR Jun-2025 Release 1 allow Improper export of Android application components in Bluetooth prior to SMR Jun-2025 Release 1 allows local attackers to make devices discoverable.

CVE-2025-20993 [MEDIUM] CWE-787 CVE-2025-20993: Out-of-bounds write in libsecimaging.camera.samsung.so prior to SMR Jun-2025 Release 1 allows local Out-of-bounds write in libsecimaging.camera.samsung.so prior to SMR Jun-2025 Release 1 allows local attackers to write out-of-bounds memory.

CVE-2025-20985 [LOW] CVE-2025-20985: Improper privilege management in ThemeManager prior to SMR Jun-2025 Release 1 allows local privilege Improper privilege management in ThemeManager prior to SMR Jun-2025 Release 1 allows local privileged attackers to reuse trial items.

CVE-2025-20957 [HIGH] CVE-2025-20957: Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch arbitrary activities with SmartManagerCN privilege.

CVE-2025-20963 [HIGH] CWE-787 CVE-2025-20963: Out-of-bounds write in memory initialization in libsavsvc.so prior to SMR May-2025 Release 1 allows Out-of-bounds write in memory initialization in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory.