CVE-2025-20977 | THREATINT

Description

Use of implicit intent for sensitive communication in translation in Samsung Notes prior to version 4.4.29.23 allows local attackers to get sensitive information. User interaction is required for triggering this vulnerability.

PUBLISHED Reserved 2024-11-06 | Published 2025-05-07 | Updated 2025-05-07 | Assigner SamsungMobile

LOW: 3.3CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Problem types

CWE-927: Use of Implicit Intent for Sensitive Communication

Product status

Default status

affected

4.4.29.23

unaffected

References

security.samsungmobile.com/...iceWeb.smsb?year=2025&month=05

cve.org (CVE-2025-20977)

nvd.nist.gov (CVE-2025-20977)

Download JSON