CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-20969 |
Description: Improper input validation in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.09.3 in China Android 13, and 15.5.04.5 in Android 14 allows local attackers to access data within Samsung Gallery.
CVSS: MEDIUM (5.5) EPSS Score: 0.01%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-20967 |
Description: Improper access control in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.09.3 in China Android 13, and 15.5.04.5 in Android 14 allows attackers to read and write arbitrary file with the privilege of Samsung Gallery.
CVSS: MEDIUM (5.1) EPSS Score: 0.02%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-20966 |
Description: Improper access control in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.09.3 in China Android 13, and 15.5.04.5 in Android 14 allows physical attackers to access data across multiple user profiles.
CVSS: MEDIUM (4.6) EPSS Score: 0.02%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-20965 |
Description: Improper handling of insufficient permission in Bixby wakeup prior to version 2.3.74.8 allows local attackers to access sensitive data.
CVSS: MEDIUM (6.2) EPSS Score: 0.02%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-20964 |
Description: Out-of-bounds write in parsing media files in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory.
CVSS: MEDIUM (6.6) EPSS Score: 0.02%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-20963 |
Description: Out-of-bounds write in memory initialization in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory.
CVSS: MEDIUM (6.6) EPSS Score: 0.02%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-20962 |
Description: Improper handling of insufficient permission in SpenGesture service prior to SMR May-2025 Release 1 allows local attackers to track the S Pen position.
CVSS: MEDIUM (4.0) EPSS Score: 0.02%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-20961 |
Description: Improper handling of insufficient permission or privileges in sepunion service prior to SMR May-2025 Release 1 allows local privileged attackers to access files with system privilege.
CVSS: MEDIUM (5.5) EPSS Score: 0.01%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-20960 |
Description: Improper handling of insufficient permission in CocktailBarService prior to SMR May-2025 Release 1 allows local attackers to use the privileged api.
CVSS: MEDIUM (4.0) EPSS Score: 0.02%
May 7th, 2025 (about 2 months ago)
|
|
CVE-2025-20959 |
Description: Use of implicit intent for sensitive communication in Wi-Fi P2P service prior to SMR May-2025 Release 1 allows local attackers to access sensitive information.
CVSS: MEDIUM (5.1) EPSS Score: 0.01%
May 7th, 2025 (about 2 months ago)
|