82 matches found
CVE-2025-25370
An issue in realme GT 2 RMX3311 running Android 14 with realme UI 5.0 allows a physically proximate attacker to obtain sensitive information via the show app only setting function...
CVE-2025-25370
CVE-2025-25370 affects Realme GT 2 (RMX3311) on Android 14 with realme UI 5.0. A nearby attacker can access sensitive information via the show app only setting function. The issue is described as a physical-proximity vulnerability with high confidentiality impact and low attack complexity, requir...
CVE-2025-20970
Improper access control in Bixby Vision prior to version 3.8.1 in Android 13, 3.8.3 in Android 14, 3.8.21 in Android 15 allows local attackers to access image files with Bixby Vision privilege...
CVE-2025-20973
Improper authentication in Secure Folder prior to version 1.8.12.0 in Android 13, and 1.9.21.00 in Android 14 allows physical attackers to reset the lock type of Secure Folder...
CVE-2025-20973
CVE-2025-20973 corresponds to an improper authentication issue in Samsung Secure Folder. Affected versions are prior to 1.8.12.0 on Android 13 and prior to 1.9.21.00 on Android 14. This vulnerability allows a physical attacker to reset the Secure Folder lock type. Remediation is to update to 1.8....
CVE-2025-20973
Improper authentication in Secure Folder prior to version 1.8.12.0 in Android 13, and 1.9.21.00 in Android 14 allows physical attackers to reset the lock type of Secure Folder...
CVE-2025-20970
CVE-2025-20970 affects Samsung Bixby Vision. Improper access control in Bixby Vision allows local attackers to access image files with Bixby Vision privilege. Affected: Android 13 (prior to 3.8.1), Android 14 (prior to 3.8.3), Android 15 (prior to 3.8.21). Mitigation: update to 3.8.1+ on Android ...
PT-2025-20058 · Samsung +1 · Secure Folder +2
Name of the Vulnerable Software and Affected Versions: Secure Folder versions prior to 1.8.12.0 in Android 13 Secure Folder versions prior to 1.9.21.00 in Android 14 Description: The issue is related to improper authentication in Secure Folder, allowing physical attackers to reset the lock type...
PT-2025-20055 · Samsung · Bixby Vision
Name of the Vulnerable Software and Affected Versions: Bixby Vision versions prior to 3.8.1 in Android 13 Bixby Vision versions prior to 3.8.3 in Android 14 Bixby Vision versions prior to 3.8.21 in Android 15 Description: The issue is related to improper access control in Bixby Vision, allowing...
ASB-A-294105066
In shouldRestrictOverlayActivities of UsbProfileGroupSettingsManager.java, there is a possible escape from SUW due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...
CVE-2025-20926
Improper export of Android application components in My Files prior to version 15.0.07.5 in Android 14 allows local attackers to access files with My Files' privilege...
CVE-2025-20899
Improper access control in PushNotification prior to version 13.0.00.15 in Android 12, 14.0.00.7 in Android 13, and 15.1.00.5 in Android 14 allows local attackers to access sensitive information...
CVE-2025-20897
CVE-2025-20897 concerns Samsung Secure Folder across Android 12–14. The issue is described as improper access control within Secure Folder, enabling a local attacker to access data. Affected versions include: Android 14 — Secure Folder prior to 1.9.20.50; Android 13 — prior to 1.8.11.0; Android 1...
PT-2025-4181 · Google · Android 12 +2
Name of the Vulnerable Software and Affected Versions: PushNotification versions prior to 13.0.00.15 in Android 12 PushNotification versions prior to 14.0.00.7 in Android 13 PushNotification versions prior to 15.1.00.5 in Android 14 Description: The issue is related to improper access control in...
CVE-2024-49421
Path traversal in Quick Share Agent prior to version 3.5.14.47 in Android 12, 3.5.19.41 in Android 13, and 3.5.19.42 in Android 14 allows adjacent attackers to write file in arbitrary location...
CVE-2024-49421
Path traversal in Quick Share Agent prior to version 3.5.14.47 in Android 12, 3.5.19.41 in Android 13, and 3.5.19.42 in Android 14 allows adjacent attackers to write file in arbitrary location...
CVE-2024-49421
CVE-2024-49421 describes a path traversal flaw in Samsung Quick Share Agent. Affected: Android 12 (before 3.5.14.47), Android 13 (before 3.5.19.41), Android 14 (before 3.5.19.42). Root cause: improper validation of user-supplied path leading to arbitrary file writes. Impact: adjacent attackers co...
CVE-2024-49421
Path traversal in Quick Share Agent prior to version 3.5.14.47 in Android 12, 3.5.19.41 in Android 13, and 3.5.19.42 in Android 14 allows adjacent attackers to write file in arbitrary location...
CVE-2024-49404
Improper Access Control in Samsung Video Player prior to versions 7.3.29.1 in Android 12, 7.3.36.1 in Android 13, and 7.3.41.230 in Android 14 allows physical attackers to access video file of other users...
CVE-2024-49404
The CVE-2024-49404 entry concerns Samsung Video Player with an improper access control flaw that could allow a physical attacker to access other users’ video files. Affected versions are: Android 12 where versions prior to 7.3.29.1 are vulnerable; Android 13 prior to 7.3.36.1; and Android 14 prio...