CVE-2025-21037

Published: Sep 3, 2025Modified: Sep 9, 2025

4.3

Vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Exploitability: 0.7 / Impact: 3.6

Source: NVD

Description

Improper access control in Samsung Notes prior to version 4.4.30.63 allows physical attackers to access data across multiple user profiles. User interaction is required for triggering this vulnerability.

Affected (1)

Products: Samsung: Notes

Samsung

1 product

Notes

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Samsung Notes	Before 4.4.30.63

References (1)

https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=09

Source: mobile.security@samsung.com

Vendor Advisory

Timeline

No history available yet.