CVE-2025-20892

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Published Feb 4, 2025

Updated: Feb 12, 2025

Summary

CVE-2025-20892 is a vulnerability affecting the bootloader prior to the SMR Jan-2025 Release 1. This issue involves a protection mechanism failure, granting physical attackers the ability to execute fastboot commands. Notably, user interaction is necessary to activate this vulnerability. Successful exploitation could potentially provide unauthorized access to the device. This vulnerability highlights the importance of keeping software up-to-date to mitigate potential risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Samsung Android

Affected Vendors

Samsung

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2Qlq6o
https://www.cve.org/CVERecord?id=CVE-2025-20892
https://nvd.nist.gov/vuln/detail/CVE-2025-20892

Back to Vulnerability Database