Unrated severityNVD Advisory· Published Dec 2, 2025· Updated Dec 2, 2025
CVE-2025-58487
CVE-2025-58487
Description
Improper authorization in Samsung Account prior to version 15.5.01.1 allows local attacker to launch arbitrary activity with Samsung Account privilege.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2< 15.5.01.1+ 1 more
- (no CPE)range: < 15.5.01.1
- (no CPE)range: 15.5.01.1
Patches
Vulnerability mechanics
References
1News mentions
1- ZDI-26-225: (Pwn2Own) Samsung Galaxy S25 Samsung Account Open Redirect Security Bypass VulnerabilityZero Day Initiative · Mar 23, 2026