Out-of-Bounds Read Vulnerability in Samsung Notes
CVE-2025-20915

5.5MEDIUM

Key Information:

Vendor
Samsung
Status
Samsung Notes
Vendor
CVE Published:
6 March 2025

Summary

An out-of-bounds read vulnerability in Samsung Notes allows attackers to access memory locations outside the intended data buffer. This can lead to the exposure of sensitive information contained in memory, posing risks to user privacy and application security. The vulnerability affects versions prior to 4.4.26.71, necessitating immediate updates to mitigate potential exploitation by threat actors.

Affected Version(s)

Samsung Notes 4.4.26.71

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2...

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.