Improper access control in WcsExtension for Galaxy Watch prior to Android Watch 16 allows local attackers to access sensitive information. Assigner : mobile.security@samsung.com More information : https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=08
Use of Implicit Intent for Sensitive Communication in Smart View prior to Android 16 allows local attackers to access sensitive information. Assigner : mobile.security@samsung.com More information : https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=08
Improper access control in accessing system device node prior to SMR Aug-2025 Release 1 allows local attackers to access device identifier. Assigner : mobile.security@samsung.com More information : https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=08
Improper privilege management in SamsungAccount prior to SMR Aug-2025 Release 1 allows local privileged attackers to deactivate Samsung account. Assigner : mobile.security@samsung.com More information : https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=08
Improper access control in SemSensorService for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to access sensitive information related to motion and body sensors. Assigner : mobile.security@samsung.com More information : https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=08
Improper access control in fall detection for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to modify fall detection configuration. Assigner : mobile.security@samsung.com More information : https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=08
Improper access control in SemSensorManager for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to access sensitive information related to outdoor exercise and sleep time. Assigner : mobile.security@samsung.com More information :...
Improper export of android application component in Emergency SoS prior to SMR Aug-2025 Release 1 allows local attackers to access sensitive information. Assigner : mobile.security@samsung.com More information : https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=08
Path Traversal in Document scanner prior to SMR Aug-2025 Release 1 allows local attackers to delete file with Document scanner’s privilege. Assigner : mobile.security@samsung.com More information : https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=08
Improper access control in PkgPredictorService prior to SMR Aug-2025 Release 1 in Chinese Android 13, 14, 15 and 16 allows local attackers to use the privileged APIs. Assigner : mobile.security@samsung.com More information : https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=08
Out-of-bounds write in detaching crypto box in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory. Assigner : mobile.security@samsung.com More information : https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=08
Out-of-bounds read in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to read out-of-bounds memory. Assigner : mobile.security@samsung.com More information : https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=08
Improper authorization in Samsung Health prior to version 6.30.1.003 allows local attackers to access data in Samsung Health. User interaction is required for triggering this vulnerability. Assigner : mobile.security@samsung.com More information : https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=08
Out-of-bounds write in creating bitmap images in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory. Assigner : mobile.security@samsung.com More information : https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=08