Out-of-Bounds Write Vulnerability in libaudiosaplus_sec.so from Samsung
CVE-2023-21475

8HIGH

Key Information:

Vendor: Samsung
Status: Samsung Devices
Vendor: CVE Published:; 3 September 2025

What is CVE-2023-21475?

The libaudiosaplus_sec.so library contains a vulnerability that allows a local attacker to write outside the bounds of allocated memory. This flaw can lead to the execution of arbitrary code, potentially compromising the security of the device. It is crucial for users of affected versions to update to the latest release to mitigate this risk.

Affected Version(s)

Samsung Mobile Devices SMR Apr-2023 Release in Android 11, 12, 13

References

https://security.samsungmobile.com/securityUpdate.smsb?ye...

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 3, 2025
Vulnerability Reserved
Nov 14, 2022