Primary

Context

Samsung Galaxy Watch Improper Authorization Vulnerability in Wireless Download Protocol

Vulnerability

Patched

A vulnerability exists in Galaxy Watch devices running versions prior to SMR April 2025 Release 1, due to improper authorization in the wireless download protocol. This flaw allows physical attackers to modify the device's unique identifier.

Impact

Exploitation of this vulnerability allows physical attackers to change the device unique identifier on affected Galaxy Watch devices.

Remediation

Users can update their devices to the Samsung Security Maintenance Release (SMR) for April 2025 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung Galaxy Watch Improper Authorization Vulnerability in Wireless Download Protocol

Vulnerability

Impact

Remediation

Affected Products

Samsung Galaxy Watch

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating