Primary

Context

Samsung EnrichedCall Implicit Intent Vulnerability Allowing Access to Sensitive Information

Vulnerability

A vulnerability exists in the EnrichedCall application on Samsung devices running Android 13, 14, or 15, prior to the May 2025 Security Maintenance Release. This vulnerability arises from the use of implicit intents for sensitive communications, which local attackers could exploit to access confidential information. Exploitation of this issue requires user interaction.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information.

Remediation

Users can apply the May 2025 Security Maintenance Release to address this vulnerability.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.0

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung EnrichedCall Implicit Intent Vulnerability Allowing Access to Sensitive Information

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating