CVE-2025-20894

Improper access control in Samsung Email prior to version 6.1.97.1 allows physical attackers to access data across multiple user profiles.

CVSS

No CVSS.

References

Link	Resource
https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=01	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:samsung:email:*:*:*:*:*:*:*:*

History

17 Jul 2025, 01:09

Type	Values Removed	Values Added
CPE		cpe:2.3:a:samsung:email::::::::
First Time		Samsung email Samsung
References	~~() https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=01 -~~	() https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=01 - Vendor Advisory
CWE		NVD-CWE-noinfo

04 Feb 2025, 08:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-02-04 08:15

Updated : 2025-07-17 01:09

NVD link : CVE-2025-20894

Mitre link : CVE-2025-20894

JSON object : View

Products Affected

samsung

CWE

NVD-CWE-noinfo