Improper Communication Channel Verification in SmartTouchCall by Samsung
CVE-2025-58488

4.5MEDIUM

Key Information:

Vendor: Samsung
Status: Smarttouchcall
Vendor: CVE Published:; 2 December 2025

What is CVE-2025-58488?

The SmartTouchCall application prior to version 1.0.1.1 has a flaw in its verification of the source of a communication channel. This vulnerability enables remote attackers to potentially gain access to sensitive information, requiring specific user interaction to exploit. This security issue underscores the importance of robust source verification mechanisms to safeguard user data from unauthorized access.

Affected Version(s)

SmartTouchCall 1.0.1.1

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2...

CVSS V3.1

Score:

4.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 2, 2025
Vulnerability Reserved
Sep 3, 2025

JSON