Out-of-Bound Read Vulnerability in Samsung Camera Library
CVE-2025-20992

4MEDIUM

Key Information:

Vendor: Samsung
Status: Samsung Devices
Vendor: CVE Published:; 4 June 2025

What is CVE-2025-20992?

A vulnerability in the Samsung library, libsecimaging.camera.samsung.so, exists that allows local attackers to exploit out-of-bounds memory access. This flaw can lead to unauthorized data exposure, potentially compromising sensitive information stored in memory. Users are advised to update their devices to the latest security release, SMR Feb-2025 Release 1, to mitigate this risk.

Affected Version(s)

Samsung Mobile Devices SMR Feb-2025 Release in Android 12, 13, 14

References

https://security.samsungmobile.com/securityUpdate.smsb?ye...

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 4, 2025
Vulnerability Reserved
Nov 6, 2024