CVE 6.2 MEDIUM

CVE-2025-21013_CVE-2025-21013

August 6, 2025 invoker category_cve

6.2 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Description

Improper access control in SemSensorManager for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to access sensitive information related to outdoor exercise and sleep time.

AI Analysis

This vulnerability allows local attackers to access sensitive information related to outdoor exercise and sleep time on Galaxy Watch devices due to improper access control in SemSensorManager.

Basic Information

ID CVE-2025-21013

Source SamsungMobile

Published Aug 6, 2025 at 04:23

Modified Aug 6, 2025 at 13:45

Affected Product

Vendor Samsung Mobile

Product Samsung Mobile Devices

Version SMR Aug-2025 Release in Android Watch 16

AI Assessment

AI Severity Medium

Vendor Samsung

Product Samsung Mobile Devices

Version SMR Aug-2025 Release in Android Watch 16

References

security.samsungmobile.com /securityUpdate.smsb

{
    "lastseen": "",
    "description": "Improper access control in SemSensorManager for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to access sensitive information related to outdoor exercise and sleep time.",
    "published": "2025-08-06T04:23:27.383Z",
    "modified": "2025-08-06T13:45:27.928Z",
    "type": "cve",
    "title": "CVE-2025-21013",
    "source": "SamsungMobile",
    "references": "https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=08",
    "id": "CVE-2025-21013",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 6.2,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Samsung Mobile Devices",
    "version": "SMR Aug-2025 Release in Android Watch 16",
    "vendor": "Samsung Mobile",
    "ai_description": "This vulnerability allows local attackers to access sensitive information related to outdoor exercise and sleep time on Galaxy Watch devices due to improper access control in SemSensorManager.",
    "ai_severity": "Medium",
    "ai_vendor": "Samsung",
    "ai_product": "Samsung Mobile Devices",
    "ai_version": "SMR Aug-2025 Release in Android Watch 16",
    "ai_score": 0
}

💭 Join the Security Discussion ❌ Cancel Reply