CVE-2025-21036
CVE-2025-21036
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5EPSS 0.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
03 Sep 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Improper access control in Samsung Notes prior to version 4.4.30.63 allows local privileged attackers to access exported note files. User interaction is required for triggering this vulnerability.
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
Affected products
Samsung Mobile · Samsung NotesWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →