CVE-2025-21036

Published: Sep 3, 2025Modified: Sep 9, 2025

5.0

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

Exploitability: 1.3 / Impact: 3.6

Source: mobile.security@samsung.com (Secondary)

Description

Improper access control in Samsung Notes prior to version 4.4.30.63 allows local privileged attackers to access exported note files. User interaction is required for triggering this vulnerability.

Affected (1)

Products: Samsung: Notes

Samsung

1 product

Notes

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Samsung Notes	Before 4.4.30.63

References (1)

https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=09

Source: mobile.security@samsung.com

Vendor Advisory

Timeline

No history available yet.