Primary

Context

Samsung PkgPredictorService Improper Access Control Vulnerability in Chinese Android Versions 13-16

Vulnerability

Patched

A vulnerability exists in the PkgPredictorService on Chinese Android versions 13, 14, 15, and 16, prior to the August 2025 Security Maintenance Release. This vulnerability allows local attackers to exploit privileged APIs due to improper access control. The issue has been addressed in the August 2025 Release 1 update.

Impact

Exploitation of this vulnerability could lead to unauthorized use of privileged APIs, potentially allowing local attackers to manipulate or access sensitive functionalities or data.

Remediation

Users can update to the August 2025 Security Maintenance Release to address this vulnerability.

Added: Aug 6, 2025, 5:46 AM

Updated: Aug 6, 2025, 5:46 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung PkgPredictorService Improper Access Control Vulnerability in Chinese Android Versions 13-16

Vulnerability

Impact

Remediation

Affected Products

Samsung Android

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating