Insecure Storage of Sensitive Information in Secure Folder for Samsung Devices
CVE-2025-21041

6.2MEDIUM

Key Information:

Vendor: Samsung
Status: Secure Folder
Vendor: CVE Published:; 3 September 2025

What is CVE-2025-21041?

A vulnerability has been identified in Samsung's Secure Folder that allows local attackers to access sensitive information. This issue arises from improper storage mechanisms in versions prior to Android 16, which fail to protect data adequately from unauthorized access. Users may be at risk of data exposure due to this insecure handling of sensitive files, emphasizing the need for timely updates and enhanced security measures.

Affected Version(s)

Secure Folder Android 16

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2...

CVSS V3.1

Score:

6.2

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 3, 2025
Vulnerability Reserved
Nov 6, 2024