Unrated severityNVD Advisory· Published Dec 2, 2025· Updated Dec 2, 2025
CVE-2025-58488
CVE-2025-58488
Description
Improper verification of source of a communication channel in SmartTouchCall prior to version 1.0.1.1 allows remote attackers to access sensitive information. User interaction is required for triggering this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <1.0.1.1
- Samsung Mobile/SmartTouchCallv5Range: 1.0.1.1
Patches
Vulnerability mechanics
References
1News mentions
1- ZDI-26-223: (Pwn2Own) Samsung Galaxy S25 Smart Touch Call Application Protection Mechanism Failure Information Disclosure VulnerabilityZero Day Initiative · Mar 23, 2026