Improper Privilege Management in Samsung Find Affects Samsung Products
CVE-2025-20907

6MEDIUM

Key Information:

Vendor: Samsung
Status: Samsung Devices
Vendor: CVE Published:; 4 February 2025

Summary

The vulnerability involves improper privilege management in the Samsung Find feature, allowing local attackers with privileged access to disable the service. This security flaw can lead to unauthorized manipulation of the Samsung Find functionality, potentially exposing devices to further exploitation. Users are advised to update to the latest version following the SMR Feb-2025 Release 1 to mitigate risks associated with this vulnerability.

Affected Version(s)

Samsung Mobile Devices SMR Feb-2025 Release in Android 12, 13 14

References

https://security.samsungmobile.com/securityUpdate.smsb?ye...

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Feb 4, 2025
Vulnerability Reserved
Nov 6, 2024