CVE-2025-20945

CVSS 3.1 Score 4 of 10 (medium)

Details

Published Apr 8, 2025

Summary

CVE-2025-20945 is a vulnerability affecting the Galaxy Watch. This issue involves improper access control, allowing local attackers to gain unauthorized access to sensitive information on affected devices. Before the SMR Apr-2025 Release 1, the Galaxy Watch failed to implement adequate access controls, posing a significant risk to user privacy. Attackers can exploit this vulnerability to obtain personal data, potentially compromising the security and integrity of the affected devices. Users are advised to update their Galaxy Watch to the latest software release to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/5C8Y52
https://www.cve.org/CVERecord?id=CVE-2025-20945
https://nvd.nist.gov/vuln/detail/CVE-2025-20945

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Know What Matters

For Customers

For Partners

CVE-2025-20945

CVSS 3.1 Score 4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations