CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20912
https://notcve.org/view.php?id=CVE-2025-20912
06 Mar 2025 — Incorrect default permission in DiagMonAgent prior to SMR Mar-2025 Release 1 allows local attackers to access data within Galaxy Watch. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=03 •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20911
https://notcve.org/view.php?id=CVE-2025-20911
06 Mar 2025 — Improper access control in sem_wifi service prior to SMR Mar-2025 Release 1 allows privileged local attackers to update MAC address of Galaxy Watch. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=03 •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20910
https://notcve.org/view.php?id=CVE-2025-20910
06 Mar 2025 — Incorrect default permission in Galaxy Watch Gallery prior to SMR Mar-2025 Release 1 allows local attackers to access data in Galaxy Watch Gallery. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=03 •
CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20909
https://notcve.org/view.php?id=CVE-2025-20909
06 Mar 2025 — Use of implicit intent for sensitive communication in Settings prior to SMR Mar-2025 Release 1 allows local attackers to access sensitive information. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=03 •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20908
https://notcve.org/view.php?id=CVE-2025-20908
06 Mar 2025 — Use of insufficiently random values in Auracast prior to SMR Mar-2025 Release 1 allows adjacent attackers to access Auracast broadcasting. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=03 •
CVSS: 7.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20903
https://notcve.org/view.php?id=CVE-2025-20903
06 Mar 2025 — Improper access control in SecSettingsIntelligence prior to SMR Mar-2025 Release 1 allows local attackers to launch privileged activities. User interaction is required for triggering this vulnerability. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=03 •
CVSS: 6.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20907
https://notcve.org/view.php?id=CVE-2025-20907
04 Feb 2025 — Improper privilege management in Samsung Find prior to SMR Feb-2025 Release 1 allows local privileged attackers to disable Samsung Find. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=02 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20906
https://notcve.org/view.php?id=CVE-2025-20906
04 Feb 2025 — Improper Export of Android Application Components in Settings prior to SMR Feb-2025 Release 1 allows local attackers to enable ADB. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=02 •
CVSS: 6.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20905
https://notcve.org/view.php?id=CVE-2025-20905
04 Feb 2025 — Out-of-bounds read and write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1 allows local privileged attackers to read and write out-of-bounds memory. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=02 •
CVSS: 6.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20904
https://notcve.org/view.php?id=CVE-2025-20904
04 Feb 2025 — Out-of-bounds write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1 allows local privileged attackers to cause memory corruption. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=02 •