CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-20889

Out-of-bounds read in decoding malformed bitstream for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.5%

CVSS Severity

CVSS v3 Score 5.3

References

https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=01

Products affected by CVE-2025-20889

Samsung » Android » Version: 12.0

cpe:2.3:o:samsung:android:12.0
Samsung » Android » Version: 13.0

cpe:2.3:o:samsung:android:13.0
Samsung » Android » Version: 14.0

cpe:2.3:o:samsung:android:14.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-20889

Products

Pricing

Contact Us