Samsung Samsung

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in any Samsung product.

RSS Feeds for Samsung security vulnerabilities

Create a CVE RSS feed including security vulnerabilities found in Samsung products with stack.watch. Just hit watch, then grab your custom RSS feed url.

Products by Samsung Sorted by Most Security Vulnerabilities since 2018

Samsung Android333 vulnerabilities

Samsung Notes32 vulnerabilities

Samsung Internet23 vulnerabilities

Samsung Galaxy Store22 vulnerabilities

Samsung Account19 vulnerabilities

Samsung Smartthings15 vulnerabilities

Samsung Pass10 vulnerabilities

Samsung Health9 vulnerabilities

Samsung Syncthru Web Service7 vulnerabilities

Samsung Cloud6 vulnerabilities

Samsung Blockchain Keystore6 vulnerabilities

Samsung Pass6 vulnerabilities

Samsung Wear Os6 vulnerabilities

Samsung Email6 vulnerabilities

Samsung Exynos6 vulnerabilities

Samsung Smart Switch Pc5 vulnerabilities

Samsung Find My Mobile5 vulnerabilities

Samsung Gallery5 vulnerabilities

Samsung Flow4 vulnerabilities

Samsung Magician4 vulnerabilities

Samsung Bixby Voice3 vulnerabilities

Samsung Exynos 1380 Firmware3 vulnerabilities

Samsung Quick Share3 vulnerabilities

Samsung Members3 vulnerabilities

Samsung Harman Infotainment3 vulnerabilities

Samsung Uphelper Library2 vulnerabilities

Samsung Bixby Vision2 vulnerabilities

Samsung Blockchain Keystore2 vulnerabilities

Samsung Searchwidget2 vulnerabilities

Samsung Push Service2 vulnerabilities

Samsung Escargot2 vulnerabilities

Samsung Exynos 2200 Firmware2 vulnerabilities

Samsung Rlottie2 vulnerabilities

Samsung Galaxy S24 Firmware2 vulnerabilities

Samsung Magicinfo 9 Server2 vulnerabilities

Samsung Group Sharing2 vulnerabilities

Samsung Assistant1 vulnerability

Samsung Bixbytouch1 vulnerability

Samsung Dex1 vulnerability

Samsung Easysetup1 vulnerability

Samsung Galaxystore1 vulnerability

Known Exploited Samsung Vulnerabilities

The following Samsung vulnerabilities have been marked by CISA as Known to be Exploited by threat actors.

Title Description Added
Samsung MagicINFO 9 Server Path Traversal Vulnerability Samsung MagicINFO 9 Server contains a path traversal vulnerability that allows an attacker to write arbitrary file as system authority.
CVE-2025-4632 Exploit Probability: 51.8%
May 22, 2025
Samsung Mobile Devices Use-After-Free Vulnerability Samsung devices with selected Exynos chipsets contain a use-after-free vulnerability that allows malicious memory write and code execution.
CVE-2022-22265 Exploit Probability: 0.2%
September 18, 2023
Samsung Mobile Devices Out-of-Bounds Read Vulnerability Samsung mobile devices contain an out-of-bounds read vulnerability within the modem interface driver due to a lack of boundary checking of a buffer in set_skb_priv(), leading to remote code execution by dereference of an invalid function pointer.
CVE-2021-25487 Exploit Probability: 0.9%
June 29, 2023
Samsung Mobile Devices Improper Input Validation Vulnerability Samsung mobile devices contain an improper input validation vulnerability within the modem interface driver that results in a format string bug leading to kernel panic.
CVE-2021-25489 Exploit Probability: 0.3%
June 29, 2023
Samsung Mobile Devices Race Condition Vulnerability Samsung mobile devices contain a race condition vulnerability within the MFC charger driver that leads to a use-after-free allowing for a write given a radio privilege is compromised.
CVE-2021-25394 Exploit Probability: 0.9%
June 29, 2023
Samsung Mobile Devices Race Condition Vulnerability Samsung mobile devices contain a race condition vulnerability within the MFC charger driver that leads to a use-after-free allowing for a write given a radio privilege is compromised.
CVE-2021-25395 Exploit Probability: 0.2%
June 29, 2023
Samsung Mobile Devices Unspecified Vulnerability Samsung mobile devices contain an unspecified vulnerability within DSP driver that allows attackers to load ELF libraries inside DSP.
CVE-2021-25371 Exploit Probability: 2.5%
June 29, 2023
Samsung Mobile Devices Improper Boundary Check Vulnerability Samsung mobile devices contain an improper boundary check vulnerability within DSP driver that allows for out-of-bounds memory access.
CVE-2021-25372 Exploit Probability: 1.9%
June 29, 2023
Samsung Mobile Devices Insertion of Sensitive Information Into Log File Vulnerability Samsung mobile devices running Android 11, 12, and 13 contain an insertion of sensitive information into log file vulnerability that allows a privileged, local attacker to conduct an address space layout randomization (ASLR) bypass.
CVE-2023-21492 Exploit Probability: 0.5%
May 19, 2023
Samsung Mobile Devices Improper Access Control Vulnerability Samsung mobile devices contain an improper access control vulnerability in clipboard service which allows untrusted applications to read or write arbitrary files. This vulnerability was chained with CVE-2021-25369 and CVE-2021-25370.
CVE-2021-25337 Exploit Probability: 0.3%
November 8, 2022
Samsung Mobile Devices Improper Access Control Vulnerability Samsung mobile devices using Mali GPU contains an improper access control vulnerability in sec_log file. Exploitation of the vulnerability exposes sensitive kernel information to the userspace. This vulnerability was chained with CVE-2021-25337 and CVE-2021-25370.
CVE-2021-25369 Exploit Probability: 0.2%
November 8, 2022
Samsung Mobile Devices Memory Corruption Vulnerability Samsung mobile devices using Mali GPU contain an incorrect implementation handling file descriptor in dpu driver. This incorrect implementation results in memory corruption, leading to kernel panic. This vulnerability was chained with CVE-2021-25337 and CVE-2021-25369.
CVE-2021-25370 Exploit Probability: 0.9%
November 8, 2022

The vulnerability CVE-2025-4632: Samsung MagicINFO 9 Server Path Traversal Vulnerability is in the top 5% of the currently known exploitable vulnerabilities.

By the Year

In 2025 there have been 36 vulnerabilities in Samsung with an average score of 6.2 out of ten. Last year, in 2024 Samsung had 202 security vulnerabilities published. Right now, Samsung is on track to have less security vulnerabilities in 2025 than it did last year. However, the average CVE base score of the vulnerabilities in 2025 is greater by 0.32.




Year Vulnerabilities Average Score
2025 36 6.23
2024 202 5.91
2023 227 6.27
2022 145 5.66
2021 73 5.79
2020 7 9.26
2019 7 7.16
2018 19 7.39

It may take a day or so for new Samsung vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Samsung Security Vulnerabilities

Out-of-bounds Read vulnerability in Samsung Open Source rLottie

CVE-2025-53074 9.1 - Critical - June 30, 2025

Out-of-bounds Read vulnerability in Samsung Open Source rLottie allows Overflow Buffers.This issue affects rLottie: V0.2.

Improper Input Validation vulnerability in Samsung Open Source rLottie

CVE-2025-53076 9.8 - Critical - June 30, 2025

Improper Input Validation vulnerability in Samsung Open Source rLottie allows Overread Buffers.This issue affects rLottie: V0.2.

An issue was discovered in Samsung Mobile Processor Exynos 1380

CVE-2025-23101 - June 04, 2025

An issue was discovered in Samsung Mobile Processor Exynos 1380. A Use-After-Free in the mobile processor leads to privilege escalation.

An issue was discovered in Samsung Mobile Processor Exynos 1380

CVE-2025-23097 - June 03, 2025

An issue was discovered in Samsung Mobile Processor Exynos 1380. The lack of a length check leads to out-of-bounds writes.

An issue was discovered in Samsung Mobile Processor Exynos 2200

CVE-2025-23104 - June 02, 2025

An issue was discovered in Samsung Mobile Processor Exynos 2200. A Use-After-Free in the mobile processor leads to privilege escalation.

Samsung Internet for Galaxy Watch version 5.0.9, available up until Samsung Galaxy Watch 3, does not properly validate TLS certificates

CVE-2025-32407 - May 16, 2025

Samsung Internet for Galaxy Watch version 5.0.9, available up until Samsung Galaxy Watch 3, does not properly validate TLS certificates, allowing for an attacker to impersonate any and all websites visited by the user. This is a critical misconfiguration in the way the browser validates the identity of the server. It negates the use of HTTPS as a secure channel, allowing for Man-in-the-Middle attacks, stealing sensitive information or modifying incoming and outgoing traffic. NOTE: This vulnerability is in an end-of-life product that is no longer maintained by the vendor.

Improper limitation of a pathname to a restricted directory vulnerability in Samsung MagicINFO 9 Server version before 21.1052

CVE-2025-4632 9.8 - Critical - May 13, 2025

Improper limitation of a pathname to a restricted directory vulnerability in Samsung MagicINFO 9 Server version before 21.1052 allows attackers to write arbitrary file as system authority.

Directory traversal

Improper Export of Android Application Components in NotificationHistoryImageProvider prior to SMR May-2025 Release 1

CVE-2025-20955 5.5 - Medium - May 07, 2025

Improper Export of Android Application Components in NotificationHistoryImageProvider prior to SMR May-2025 Release 1 allows local attackers to access notification images.

Improper access control in SmartManagerCN prior to SMR May-2025 Release 1

CVE-2025-20957 7.8 - High - May 07, 2025

Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch arbitrary activities with SmartManagerCN privilege.

Improper verification of intent by broadcast receiver in UnifiedWFC prior to SMR May-2025 Release 1

CVE-2025-20958 4.4 - Medium - May 07, 2025

Improper verification of intent by broadcast receiver in UnifiedWFC prior to SMR May-2025 Release 1 allows local attackers to manipulate VoWiFi related behaviors.

Use of implicit intent for sensitive communication in Wi-Fi P2P service prior to SMR May-2025 Release 1

CVE-2025-20959 5.5 - Medium - May 07, 2025

Use of implicit intent for sensitive communication in Wi-Fi P2P service prior to SMR May-2025 Release 1 allows local attackers to access sensitive information.

Improper handling of insufficient permission in CocktailBarService prior to SMR May-2025 Release 1

CVE-2025-20960 3.3 - Low - May 07, 2025

Improper handling of insufficient permission in CocktailBarService prior to SMR May-2025 Release 1 allows local attackers to use the privileged api.

Improper handling of insufficient permission or privileges in sepunion service prior to SMR May-2025 Release 1

CVE-2025-20961 5.5 - Medium - May 07, 2025

Improper handling of insufficient permission or privileges in sepunion service prior to SMR May-2025 Release 1 allows local privileged attackers to access files with system privilege.

Improper handling of insufficient permission in SpenGesture service prior to SMR May-2025 Release 1

CVE-2025-20962 4 - Medium - May 07, 2025

Improper handling of insufficient permission in SpenGesture service prior to SMR May-2025 Release 1 allows local attackers to track the S Pen position.

Out-of-bounds write in memory initialization in libsavsvc.so prior to SMR May-2025 Release 1

CVE-2025-20963 7.8 - High - May 07, 2025

Out-of-bounds write in memory initialization in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory.

Memory Corruption

Out-of-bounds write in parsing media files in libsavsvc.so prior to SMR May-2025 Release 1

CVE-2025-20964 7.8 - High - May 07, 2025

Out-of-bounds write in parsing media files in libsavsvc.so prior to SMR May-2025 Release 1 allows local attackers to write out-of-bounds memory.

Memory Corruption

Out-of-bounds write in Keymaster trustlet prior to SMR May-2025 Release 1

CVE-2025-20937 6.7 - Medium - May 07, 2025

Out-of-bounds write in Keymaster trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.

Memory Corruption

Improper access control in SmartManagerCN prior to SMR May-2025 Release 1

CVE-2025-20953 4.4 - Medium - May 07, 2025

Improper access control in SmartManagerCN prior to SMR May-2025 Release 1 allows local attackers to launch activities within SmartManagerCN.

Use of implicit intent for sensitive communication in EnrichedCall prior to SMR May-2025 Release 1

CVE-2025-20954 5.5 - Medium - May 07, 2025

Use of implicit intent for sensitive communication in EnrichedCall prior to SMR May-2025 Release 1 allows local attackers to access sensitive information. User interaction is required for triggering this vulnerability.

Improper access control in Sticker Center prior to SMR Apr-2025 Release 1

CVE-2025-20934 5.5 - Medium - April 08, 2025

Improper access control in Sticker Center prior to SMR Apr-2025 Release 1 allows local attackers to access image files with system privilege.

Protection Mechanism Failure in bootloader prior to SMR Jan-2025 Release 1 allows physical attackers to allow to execute fastboot command

CVE-2025-20892 5.9 - Medium - February 04, 2025

Protection Mechanism Failure in bootloader prior to SMR Jan-2025 Release 1 allows physical attackers to allow to execute fastboot command. User interaction is required for triggering this vulnerability.

Improper privilege management in Samsung Find prior to SMR Feb-2025 Release 1

CVE-2025-20907 4.4 - Medium - February 04, 2025

Improper privilege management in Samsung Find prior to SMR Feb-2025 Release 1 allows local privileged attackers to disable Samsung Find.

Out-of-bounds read and write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1

CVE-2025-20905 6.7 - Medium - February 04, 2025

Out-of-bounds read and write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1 allows local privileged attackers to read and write out-of-bounds memory.

Out-of-bounds Read

Out-of-bounds write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1

CVE-2025-20904 6.7 - Medium - February 04, 2025

Out-of-bounds write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1 allows local privileged attackers to cause memory corruption.

Memory Corruption

Improper access control in NotificationManager prior to SMR Jan-2025 Release 1

CVE-2025-20893 5.1 - Medium - February 04, 2025

Improper access control in NotificationManager prior to SMR Jan-2025 Release 1 allows local attackers to change the configuration of notifications.

Out-of-bounds read in decoding malformed bitstream of video thumbnails in libsthmbc.so prior to SMR Jan-2025 Release 1

CVE-2025-20891 5.5 - Medium - February 04, 2025

Out-of-bounds read in decoding malformed bitstream of video thumbnails in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability.

Out-of-bounds Read

Out-of-bounds write in decoding frame buffer in libsthmbc.so prior to SMR Jan-2025 Release 1

CVE-2025-20890 7.8 - High - February 04, 2025

Out-of-bounds write in decoding frame buffer in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.

Memory Corruption

Out-of-bounds read in decoding malformed bitstream for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1

CVE-2025-20889 5.5 - Medium - February 04, 2025

Out-of-bounds read in decoding malformed bitstream for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability.

Memory Corruption

Out-of-bounds write in handling the block size for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1

CVE-2025-20888 7.8 - High - February 04, 2025

Out-of-bounds write in handling the block size for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.

Memory Corruption

Out-of-bounds read in accessing table used for svp8t in libsthmbc.so prior to SMR Jan-2025 Release 1

CVE-2025-20887 5.5 - Medium - February 04, 2025

Out-of-bounds read in accessing table used for svp8t in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability.

Out-of-bounds Read

Inclusion of sensitive information in test code in softsim trustlet prior to SMR Jan-2025 Release 1

CVE-2025-20886 4.4 - Medium - February 04, 2025

Inclusion of sensitive information in test code in softsim trustlet prior to SMR Jan-2025 Release 1 allows local privileged attackers to get test key.

Insecure Storage of Sensitive Information

Improper access control in Samsung Message prior to SMR Jan-2025 Release 1

CVE-2025-20884 4.6 - Medium - February 04, 2025

Improper access control in Samsung Message prior to SMR Jan-2025 Release 1 allows physical attackers to access data across multiple user profiles.

Improper access control in SoundPicker prior to SMR Jan-2025 Release 1

CVE-2025-20883 4.6 - Medium - February 04, 2025

Improper access control in SoundPicker prior to SMR Jan-2025 Release 1 allows physical attackers to access data across multiple user profiles.

Out-of-bounds write in accessing uninitialized memory for svc1td in libsthmbc.so prior to SMR Jan-2025 Release 1

CVE-2025-20882 7.8 - High - February 04, 2025

Out-of-bounds write in accessing uninitialized memory for svc1td in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.

Memory Corruption

Out-of-bounds write in accessing buffer storing the decoded video frames in libsthmbc.so prior to SMR Jan-2025 Release 1

CVE-2025-20881 7.8 - High - February 04, 2025

Out-of-bounds write in accessing buffer storing the decoded video frames in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.

Memory Corruption

Out-of-bounds write in softsim trustlet prior to SMR Jan-2025 Release 1

CVE-2025-20885 6.7 - Medium - February 04, 2025

Out-of-bounds write in softsim trustlet prior to SMR Jan-2025 Release 1 allows local privileged attackers to cause memory corruption.

Memory Corruption

Samsung Magician Installer Symbolic Link Vulnerability

CVE-2024-53921 2.8 - Low - December 03, 2024

An issue was discovered in the installer in Samsung Magician 8.1.0 on Windows. An attacker can create arbitrary folders in the system permission directory via a symbolic link during the installation process.

Samsung libsaped.so Out-of-Bounds Write Remote Code Execution Vulnerability

CVE-2024-49415 9.8 - Critical - December 03, 2024

Out-of-bound write in libsaped.so prior to SMR Dec-2024 Release 1 allows remote attackers to execute arbitrary code.

Memory Corruption

Samsung Dex Mode Authentication Bypass Vulnerability

CVE-2024-49414 2.4 - Low - December 03, 2024

Authentication Bypass Using an Alternate Path in Dex Mode prior to SMR Dec-2024 Release 1 allows physical attackers to temporarily access to recent app list.

SmartSwitch: Improper Verification of Cryptographic Signature Vulnerability

CVE-2024-49413 7.8 - High - December 03, 2024

Improper Verification of Cryptographic Signature in SmartSwitch prior to SMR Dec-2024 Release 1 allows local attackers to install malicious applications.

Improper Verification of Cryptographic Signature

ThemeCenter Path Traversal Vulnerability

CVE-2024-49411 4.6 - Medium - December 03, 2024

Path Traversal in ThemeCenter prior to SMR Dec-2024 Release 1 allows physical attackers to copy apk files to arbitrary path with ThemeCenter privilege.

Directory traversal

Samsung libswmfextractor.so Out-of-Bounds Write Vulnerability

CVE-2024-49410 7.8 - High - December 03, 2024

Out-of-bounds write in libswmfextractor.so prior to SMR Dec-2024 Release 1 allows local attackers to execute arbitrary code.

Memory Corruption

SmartThings Implicit Intent Information Disclosure Vulnerability

CVE-2024-49416 - December 03, 2024

Use of implicit intent for sensitive communication in SmartThings prior to version 1.8.21 allows local attackers to get sensitive information.

Samsung Exynos Baseband Software Length Validation Vulnerability

CVE-2024-39343 - December 02, 2024

An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, Modem 5123, and Modem 5300. The baseband software does not properly check the length specified by the MM (Mobility Management) module, which can lead to Denial of Service.

Exynos Video Codec Integer Overflow Vulnerability

CVE-2018-9352 6.5 - Medium - November 27, 2024

In ihevcd_allocate_dynamic_bufs of ihevcd_api.c there is a possible resource exhaustion due to integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.

Integer Overflow or Wraparound

Samsung Contacts Profile Access Control Bypass

CVE-2024-34674 4.6 - Medium - November 06, 2024

Improper access control in Contacts prior to SMR Nov-2024 Release 1 allows physical attackers to access data across multiple user profiles.

WlanTest Implicit Intent Info Leak

CVE-2024-34680 5.5 - Medium - November 06, 2024

Use of implicit intent for sensitive communication in WlanTest prior to SMR Nov-2024 Release 1 allows local attackers to get sensitive information.

Dex Mode Access Control Bypass

CVE-2024-34675 4.6 - Medium - November 06, 2024

Improper access control in Dex Mode prior to SMR Nov-2024 Release 1 allows physical attackers to temporarily access to unlocked screen.

Samsung libsubextractor OOB Write

CVE-2024-34676 7.3 - High - November 06, 2024

Out-of-bounds write in parsing subtitle file in libsubextractor.so prior to SMR Nov-2024 Release 1 allows local attackers to cause memory corruption. User interaction is required for triggering this vulnerability.

Memory Corruption

System UI Sensitive Info Leak in Samsung SMR

CVE-2024-34677 3.3 - Low - November 06, 2024

Exposure of sensitive information in System UI prior to SMR Nov-2024 Release 1 allow local attackers to make malicious apps appear as legitimate.

Insecure Storage of Sensitive Information

Built by Foundeo Inc., with data from the National Vulnerability Database (NVD). Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.