CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20893
https://notcve.org/view.php?id=CVE-2025-20893
04 Feb 2025 — Improper access control in NotificationManager prior to SMR Jan-2025 Release 1 allows local attackers to change the configuration of notifications. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=01 •
CVSS: 6.6EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20892
https://notcve.org/view.php?id=CVE-2025-20892
04 Feb 2025 — Protection Mechanism Failure in bootloader prior to SMR Jan-2025 Release 1 allows physical attackers to allow to execute fastboot command. User interaction is required for triggering this vulnerability. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=01 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20891
https://notcve.org/view.php?id=CVE-2025-20891
04 Feb 2025 — Out-of-bounds read in decoding malformed bitstream of video thumbnails in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=01 •
CVSS: 7.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20890
https://notcve.org/view.php?id=CVE-2025-20890
04 Feb 2025 — Out-of-bounds write in decoding frame buffer in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=01 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20889
https://notcve.org/view.php?id=CVE-2025-20889
04 Feb 2025 — Out-of-bounds read in decoding malformed bitstream for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=01 •
CVSS: 7.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20888
https://notcve.org/view.php?id=CVE-2025-20888
04 Feb 2025 — Out-of-bounds write in handling the block size for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=01 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20887
https://notcve.org/view.php?id=CVE-2025-20887
04 Feb 2025 — Out-of-bounds read in accessing table used for svp8t in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=01 •
CVSS: 4.4EPSS: 0%CPEs: 2EXPL: 0CVE-2025-20886
https://notcve.org/view.php?id=CVE-2025-20886
04 Feb 2025 — Inclusion of sensitive information in test code in softsim TA prior to SMR Jan-2025 Release 1 allows local privileged attackers to get test key. Inclusion of sensitive information in test code in softsim trustlet prior to SMR Jan-2025 Release 1 allows local privileged attackers to get test key. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=01 •
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 0CVE-2025-20885
https://notcve.org/view.php?id=CVE-2025-20885
04 Feb 2025 — Out-of-bounds write in softsim TA prior to SMR Jan-2025 Release 1 allows local privileged attackers to cause memory corruption. Out-of-bounds write in softsim trustlet prior to SMR Jan-2025 Release 1 allows local privileged attackers to cause memory corruption. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=01 •
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0CVE-2025-20884
https://notcve.org/view.php?id=CVE-2025-20884
04 Feb 2025 — Improper access control in Samsung Message prior to SMR Jan-2025 Release 1 allows physical attackers to access data across multiple user profiles. • https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=01 •