CVE-2025-20888
Published: 04 February 2025
Description
Out-of-bounds write in handling the block size for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.
Security Summary
CVE-2025-20888 is an out-of-bounds write vulnerability in the handling of block size for smp4vtd within libsthmbc.so, affecting versions prior to the SMR Jan-2025 Release 1. This flaw, classified under CWE-787, enables local attackers to execute arbitrary code with elevated privileges. The vulnerability carries a CVSS v3.1 base score of 7.0 (AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H), indicating high confidentiality, integrity, and availability impacts under specific local access conditions.
A local attacker can exploit this vulnerability by triggering the out-of-bounds write, requiring user interaction and high attack complexity but no prior privileges. Successful exploitation allows the attacker to execute arbitrary code with elevated privileges on the affected system.
Samsung's security advisory for the January 2025 updates, available at https://security.samsungmobile.com/securityUpdate.smsb?year=2025&month=01, addresses this issue through the SMR Jan-2025 Release 1 patch, recommending users apply the update to mitigate the vulnerability.
Details
- CWE(s)