Primary

Context

Samsung NotificationManager Improper Access Control Vulnerability Allowing Notification Configuration Changes

Vulnerability

Patched

A vulnerability exists in the NotificationManager component of Samsung devices running Android 14, prior to the January 2025 Security Maintenance Release. This vulnerability allows local attackers to manipulate notification settings. The issue stems from improper access control, which could be exploited to change how notifications are managed or displayed.

Impact

Exploitation of this vulnerability could lead to unauthorized changes in notification configurations, potentially allowing for the manipulation of how notifications are presented to the user.

Remediation

Users can apply the January 2025 Security Maintenance Release to address this vulnerability.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung NotificationManager Improper Access Control Vulnerability Allowing Notification Configuration Changes

Vulnerability

Impact

Remediation

Affected Products

Android

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating