CVE-2025-20947

Medium CVSS: 5.5

Improper handling of insufficient permission or privileges in ClipboardService prior to SMR Apr-2025 Release 1 allows local attackers to access image files across multiple users. User interaction is required for triggering this vulnerability.

Vendor

Samsung

Product

Android

CWE

NVD-CWE-Other

Yayın Tarihi

2025-04-08 05:15:39

Güncelleme

2026-02-05 14:57:26

Source Identifier

mobile.security@samsung.com

KEV Date Added

Kategoriler

NVD-CWE-Other Android MEDIUM Samsung 2025

Referanslar

https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=04

Benzer Kayıtlar

High

CVE-2025-54601

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor amd Wearable Processor Exynos 980, 850, 1080, 12…

Critical

CVE-2025-54328

An issue was discovered in SMS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 21…

High

CVE-2025-54602

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 12…

High

CVE-2025-57834

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem (Exynos 980, 850, 990, 1080, 2100, 12…

High

CVE-2025-54324

An issue was discovered in NAS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 21…

Critical

CVE-2025-58349

An issue was discovered in L2 in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 210…