Samsung Android 15.0 SMR-MAR-2025-R1

CPE Details

Samsung Android 15.0 SMR-MAR-2025-R1
samsung
android
15.0
2025-05-27
19h39 +00:00
2025-05-27
19h39 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:samsung:android:15.0:smr-mar-2025-r1:*:*:*:*:*:*

Informations

Vendor

samsung

Product

android

Version

15.0

Update

smr-mar-2025-r1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2025-20964 2025-05-07 08h24 +00:00 Out-of-bounds write in parsing media files in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory.
7.8
High
CVE-2025-20963 2025-05-07 08h24 +00:00 Out-of-bounds write in memory initialization in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory.
7.8
High
CVE-2025-20962 2025-05-07 08h24 +00:00 Improper handling of insufficient permission in SpenGesture service prior to SMR May-2025 Release 1 allows local attackers to track the S Pen position.
4
Medium
CVE-2025-20961 2025-05-07 08h24 +00:00 Improper handling of insufficient permission or privileges in sepunion service prior to SMR May-2025 Release 1 allows local privileged attackers to access files with system privilege.
5.5
Medium
CVE-2025-20960 2025-05-07 08h24 +00:00 Improper handling of insufficient permission in CocktailBarService prior to SMR May-2025 Release 1 allows local attackers to use the privileged api.
4
Medium
CVE-2025-20959 2025-05-07 08h24 +00:00 Use of implicit intent for sensitive communication in Wi-Fi P2P service prior to SMR May-2025 Release 1 allows local attackers to access sensitive information.
5.5
Medium
CVE-2025-20958 2025-05-07 08h24 +00:00 Improper verification of intent by broadcast receiver in UnifiedWFC prior to SMR May-2025 Release 1 allows local attackers to manipulate VoWiFi related behaviors.
4.4
Medium
CVE-2025-20957 2025-05-07 08h24 +00:00 Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch arbitrary activities with SmartManagerCN privilege.
7.8
High
CVE-2025-20955 2025-05-07 08h24 +00:00 Improper Export of Android Application Components in NotificationHistoryImageProvider prior to SMR May-2025 Release 1 allows local attackers to access notification images.
5.5
Medium
CVE-2025-20954 2025-05-07 08h24 +00:00 Use of implicit intent for sensitive communication in EnrichedCall prior to SMR May-2025 Release 1 allows local attackers to access sensitive information. User interaction is required for triggering this vulnerability.
5.5
Medium
CVE-2025-20953 2025-05-07 08h24 +00:00 Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch activities within SmartManagerCN.
5.1
Medium
CVE-2025-20937 2025-05-07 08h22 +00:00 Out-of-bounds write in Keymaster trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.
6.7
Medium
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.