VDB

CVE-2025-21073

CVE-2025-21073 PUBLISHED CVSS 6.800000190734863 MEDIUM

Insecure default configuration in USB connection mode prior to SMR Nov-2025 Release 1 allows privileged physical attackers to access user data. User interaction is required for triggering this vulnerability.

EPSS 0.02% · 4.7th percentile

Risk Scores

CVSS 3.1
6.800000190734863
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS Score
0.02%
4.7th percentile

Affected Products

VendorProductVersions
Samsung MobileSamsung Mobile DevicesSMR Nov-2025 Release in Android 13, 14, 15, 16
samsungandroid13.0, 13.0, 13.0

Exploit Intelligence

Timeline

  • Nov 4, 2025 CVE Published
  • Nov 5, 2025 EPSS Score
  • Nov 5, 2025 Coalition ESS Score
  • Nov 8, 2025 Coalition ESS Score
  • Nov 10, 2025 EPSS Score
  • Nov 15, 2025 Coalition ESS Score
  • Nov 16, 2025 EPSS Score
  • Nov 21, 2025 EPSS Score
  • Nov 27, 2025 EPSS Score
  • Nov 28, 2025 Coalition ESS Score
  • Dec 2, 2025 EPSS Score
  • Dec 5, 2025 Coalition ESS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›