OOB write in KnoxVault trustlet (Samsung) enabling local privileged
CVE-2025-20982 Published on July 8, 2025
Out-of-bounds write in setting auth secret in KnoxVault trustlet prior to SMR Jul-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.
Vulnerability Analysis
CVE-2025-20982 is exploitable with local system access, and requires user privileges. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.
Products Associated with CVE-2025-20982
stack.watch emails you whenever new vulnerabilities are published in Samsung Android or Samsung Mobile Devices. Just hit a watch button to start following.
Affected Versions
Samsung Mobile Devices Version SMR Jul-2025 Release in Android 14, 15 is unaffected by CVE-2025-20982Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.