CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper access control in Samsung Calendar prior to version 12.5.06.5 in Android 14 and 12.6.01.12 in Android 15 allows physical attackers to access data across multiple user profiles...

4.6CVSS0.00034EPSS

Exploits0References1

CVE•added 2025/09/03 6:5 a.m.•10 views

CVE-2025-21035

CVE-2025-21035 describes an improper access control in Samsung Calendar. The vulnerability affects Samsung Calendar versions prior to 12.5.06.5 on Android 14 and prior to 12.6.01.12 on Android 15, potentially allowing a physical attacker to access data across multiple user profiles. Root cause is...

4.6CVSS5.9AI score0.00034EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/09/03 6:5 a.m.•1 views

CVE-2025-21035

Improper access control in Samsung Calendar prior to version 12.5.06.5 in Android 14 and 12.6.01.12 in Android 15 allows physical attackers to access data across multiple user profiles...

4.6CVSS5.9AI score0.00034EPSS

Exploits0References1

CVE•added 2025/09/03 6:5 a.m.•9 views

CVE-2025-21030

Summary for CVE-2025-21030 : The vulnerability affects Samsung Mobile devices running Android with the AppPrelaunchManagerService. It stems from improper handling of insufficient permissions in the service, exposing a local attack surface that can let a non-privileged attacker cause arbitrary app...

4.3CVSS6.4AI score0.00029EPSS

Exploits0References1

Vulnrichment•added 2025/09/03 6:5 a.m.•3 views

CVE-2025-21030

Improper handling of insufficient permission in AppPrelaunchManagerService prior to SMR Sep-2025 Release 1 in Chinese Android 15 allows local attackers to execute arbitrary application in the background...

4.3CVSS6.4AI score0.00029EPSS

Exploits0References1

Positive Technologies•added 2025/09/03 12:0 a.m.•1 views

PT-2025-35689

Name of the Vulnerable Software and Affected Versions: Samsung Calendar versions prior to 12.5.06.5 in Android 14 Samsung Calendar versions prior to 12.6.01.12 in Android 15 Description: Improper access control in Samsung Calendar allows physical attackers to access data across multiple user...

4.6CVSS6AI score0.00034EPSS

Exploits0References5

RedhatCVE•added 2025/08/08 4:27 a.m.•5 views

CVE-2025-21016

Improper access control in PkgPredictorService prior to SMR Aug-2025 Release 1 in Chinese Android 13, 14, 15 and 16 allows local attackers to use the privileged APIs...

4.3CVSS6.1AI score0.00101EPSS

Exploits0References1

CVE•added 2025/08/06 4:23 a.m.•13 views

CVE-2025-21016

The CVE-2025-21016 issue affects Samsung PkgPredictorService in Chinese Android 13–16 prior to SMR Aug-2025 Release 1. The root cause is improper access control, enabling local attackers to invoke privileged APIs. Impact is limited to local privilege escalation via these privileged APIs, with doc...

4.3CVSS6.2AI score0.00101EPSS

Exploits0References1

Cvelist•added 2025/08/06 4:23 a.m.•7 views

CVE-2025-21016

Improper access control in PkgPredictorService prior to SMR Aug-2025 Release 1 in Chinese Android 13, 14, 15 and 16 allows local attackers to use the privileged APIs...

4.3CVSS0.00101EPSS

Exploits0References1

RedhatCVE•added 2025/07/10 11:22 a.m.•3 views

CVE-2025-21005

Improper access control in isemtelephony prior to Android 15 allows local attackers to access sensitive information...

5.5CVSS6.8AI score0.00062EPSS

Exploits0References1

RedhatCVE•added 2025/07/10 11:22 a.m.•4 views

CVE-2025-21009

Out-of-bounds read in decoding malformed frame header in libsavsvc.so prior to Android 15 allows local attackers to cause memory corruption...

5.5CVSS6.8AI score0.00092EPSS

Exploits0References1