CVE-2025-20977: Use of implicit intent for sensitive communication in translation in Samsung Notes prior to version 4.4.29.23 allows local attackers to get...

3.3 CVSS

Description

Use of implicit intent for sensitive communication in translation in Samsung Notes prior to version 4.4.29.23 allows local attackers to get sensitive information. User interaction is required for triggering this vulnerability.

Classification

CVE ID: CVE-2025-20977

CVSS Base Severity: LOW

CVSS Base Score: 3.3

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Problem Types

CWE-927: Use of Implicit Intent for Sensitive Communication

Affected Products

Vendor: Samsung Mobile

Product: Samsung Notes

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.01% (probability of being exploited)

EPSS Percentile: 1.35% (scored less or equal to compared to others)

EPSS Date: 2025-06-05 (when was this score calculated)

References

https://nvd.nist.gov/vuln/detail/CVE-2025-20977
https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=05

Timeline

2025-05-07 09:40:10 UTC
CVE

Use of implicit intent for sensitive communication in translation in Samsung Notes prior to version 4.4.29.23 allows local attackers to get...