CVE Vulnerabilities

CVE-2025-20952

Published: Apr 09, 2025 | Modified: Feb 02, 2026
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io logo minimus.io logo echo.ai logo

Improper access control in Mdecservice prior to SMR Apr-2025 Release 1 allows local attackers to access arbitrary files with system privilege.

Affected Software

NameVendorStart VersionEnd Version
AndroidSamsung15.0-smr-feb-2025-r1 (including)15.0-smr-feb-2025-r1 (including)
AndroidSamsung15.0-smr-jan-2025-r1 (including)15.0-smr-jan-2025-r1 (including)
AndroidSamsung15.0-smr-mar-2025-r1 (including)15.0-smr-mar-2025-r1 (including)

References