Primary

Context

Samsung Bootloader Protection Mechanism Failure Vulnerability Allowing Fastboot Command Execution

Vulnerability

A protection mechanism failure vulnerability has been identified in the bootloader of select Android 13 and 14 devices using MediaTek chipsets, prior to the January 2025 Security Maintenance Release. This vulnerability allows physical attackers to execute fastboot commands, requiring user interaction to trigger.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of fastboot commands, potentially allowing physical attackers to manipulate the device at a low level.

Remediation

The vulnerability can be addressed by updating to the January 2025 Security Maintenance Release.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung Bootloader Protection Mechanism Failure Vulnerability Allowing Fastboot Command Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating