4

CVSS3.1

CVE-2025-58484 -

Incorrect default permissions in Samsung Cloud Assistant prior to version 8.0.03.8 allows local attacker to access partial data in sandbox.

📅 Published: Dec. 2, 2025, 1:24 a.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

5.9

CVSS3.1

CVE-2025-58483 -

Improper export of android application components in Galaxy Store for Galaxy Watch prior to version 1.0.06.29 allows local attacker to install arbitrary application on Galaxy Store.

📅 Published: Dec. 2, 2025, 1:24 a.m. 🔄 Last Modified: Dec. 4, 2025, 6:11 p.m.

7.3

CVSS3.1

CVE-2025-58482 -

Improper access control in MPLocalService of MotionPhoto prior to version 4.1.51 allows local attackers to start privileged service.

📅 Published: Dec. 2, 2025, 1:24 a.m. 🔄 Last Modified: Feb. 26, 2026, 4:57 p.m.

7.3

CVSS3.1

CVE-2025-58481 -

Improper access control in MPRemoteService of MotionPhoto prior to version 4.1.51 allows local attackers to start privileged service.

📅 Published: Dec. 2, 2025, 1:24 a.m. 🔄 Last Modified: Feb. 26, 2026, 4:57 p.m.

4.3

CVSS3.1

CVE-2025-58480 -

Heap-based buffer overflow in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory.

📅 Published: Dec. 2, 2025, 1:24 a.m. 🔄 Last Modified: Dec. 5, 2025, 7:09 p.m.

4.3

CVSS3.1

CVE-2025-58479 -

Out-of-bounds read in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory.

📅 Published: Dec. 2, 2025, 1:24 a.m. 🔄 Last Modified: Dec. 5, 2025, 7:09 p.m.

4.3

CVSS3.1

CVE-2025-58478 -

Out-of-bounds write in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory.

📅 Published: Dec. 2, 2025, 1:24 a.m. 🔄 Last Modified: Dec. 5, 2025, 7:09 p.m.

4.3

CVSS3.1

CVE-2025-58477 -

Out-of-bounds write in parsing IFD tag in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory.

📅 Published: Dec. 2, 2025, 1:24 a.m. 🔄 Last Modified: Dec. 5, 2025, 7:12 p.m.

4.2

CVSS3.1

CVE-2025-58476 -

Out-of-bounds read vulnerability in bootloader prior to SMR Dec-2025 Release 1 allows physical attackers to access out-of-bounds memory.

📅 Published: Dec. 2, 2025, 1:24 a.m. 🔄 Last Modified: Dec. 5, 2025, 7:13 p.m.

5.6

CVSS3.1

CVE-2025-58475 -

Improper input validation in libsec-ril.so prior to SMR Dec-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.

📅 Published: Dec. 2, 2025, 1:24 a.m. 🔄 Last Modified: Dec. 5, 2025, 7:14 p.m.

CVE Authored by @MrM3ARS

4

CVE-2025-58484 -

5.9

CVE-2025-58483 -

7.3

CVE-2025-58482 -

7.3

CVE-2025-58481 -

4.3

CVE-2025-58480 -

4.3

CVE-2025-58479 -

4.3

CVE-2025-58478 -

4.3

CVE-2025-58477 -

4.2

CVE-2025-58476 -

5.6

CVE-2025-58475 -