CVE-2025-20926

Published: Mar 6, 2025Modified: Oct 3, 2025

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitability: 1.8 / Impact: 3.6

Source: mobile.security@samsung.com (Secondary)

Description

Improper export of Android application components in My Files prior to version 15.0.07.5 in Android 14 allows local attackers to access files with My Files' privilege.

Affected (1)

Products: Samsung: Myfiles

Samsung

1 product

Myfiles

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Samsung Myfiles	Before 15.0.07.5

Running on/with	Platform Versions
Google Android	Version 14.0

References (1)

https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=03

Source: mobile.security@samsung.com

Vendor Advisory

Timeline

No history available yet.