Primary

Context

Samsung LeAudioService Improper Access Control Vulnerability Allowing Auracast Interruption

Vulnerability

A vulnerability exists in the LeAudioService component of Samsung devices, specifically in versions prior to the July 2025 Security Maintenance Release. This vulnerability allows local attackers to disrupt Auracast broadcasting by improperly managing access controls. The issue arises from a lack of adequate verification, enabling unauthorized manipulation of audio broadcast features.

Impact

Exploitation of this vulnerability allows local attackers to stop Auracast broadcasting, disrupting audio sharing capabilities.

Remediation

Users can apply the July 2025 Security Maintenance Release, which includes the necessary patch for this vulnerability.

Added: Jul 8, 2025, 12:04 PM

Updated: Jul 8, 2025, 12:04 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung LeAudioService Improper Access Control Vulnerability Allowing Auracast Interruption

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating