CVE-2025-21023_CVE-2025-21023

3.3 / 10

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Description

Improper access control in WcsExtension for Galaxy Watch prior to Android Watch 16 allows local attackers to access sensitive information.

AI Analysis

A vulnerability in WcsExtension for Galaxy Watch allows local attackers to access sensitive information due to improper access controls.

Basic Information

ID CVE-2025-21023

Source SamsungMobile

Published Aug 6, 2025 at 04:23

Modified Aug 6, 2025 at 15:38

Affected Product

Vendor Samsung Mobile

Product WcsExtension for Galaxy Watch

Version Android Watch 16

AI Assessment

AI Severity Low

Vendor Samsung

Product WcsExtension for Galaxy Watch

Version Prior to Android Watch 16

References

security.samsungmobile.com /serviceWeb.smsb

{
    "lastseen": "",
    "description": "Improper access control in WcsExtension for Galaxy Watch prior to Android Watch 16 allows local attackers to access sensitive information.",
    "published": "2025-08-06T04:23:41.082Z",
    "modified": "2025-08-06T15:38:36.100Z",
    "type": "cve",
    "title": "CVE-2025-21023",
    "source": "SamsungMobile",
    "references": "https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=08",
    "id": "CVE-2025-21023",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 3.3,
        "severity": "LOW",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "WcsExtension for Galaxy Watch",
    "version": "Android Watch 16",
    "vendor": "Samsung Mobile",
    "ai_description": "A vulnerability in WcsExtension for Galaxy Watch allows local attackers to access sensitive information due to improper access controls.",
    "ai_severity": "Low",
    "ai_vendor": "Samsung",
    "ai_product": "WcsExtension for Galaxy Watch",
    "ai_version": "Prior to Android Watch 16",
    "ai_score": 0
}