Improper access control in Mdecservice prior to SMR Apr-2025 Release 1 allows local attackers to access arbitrary files with system privilege.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Android | Samsung | 15.0-smr-feb-2025-r1 (including) | 15.0-smr-feb-2025-r1 (including) |
| Android | Samsung | 15.0-smr-jan-2025-r1 (including) | 15.0-smr-jan-2025-r1 (including) |
| Android | Samsung | 15.0-smr-mar-2025-r1 (including) | 15.0-smr-mar-2025-r1 (including) |