CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-20890

Out-of-bounds write in decoding frame buffer in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.2%

CVSS Severity

CVSS v3 Score 7.0

References

https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=01

Products affected by CVE-2025-20890

Samsung » Android » Version: 12.0

cpe:2.3:o:samsung:android:12.0
Samsung » Android » Version: 13.0

cpe:2.3:o:samsung:android:13.0
Samsung » Android » Version: 14.0

cpe:2.3:o:samsung:android:14.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-20890

Products

Pricing

Contact Us