{"cve":{"cve_id":"CVE-2025-20897","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00141,"epss_percentile":0.03787,"epss_as_of":"2026-06-23","description":"Improper access control in Secure Folder prior to version 1.9.20.50 in Android 14, 1.8.11.0 in Android 13, and 1.7.04.0 in Android 12 allows local attacker to access data in Secure Folder.","published_at":"2025-02-04T07:19:45.024000Z","last_modified_at":null,"cvss_v3_score":6.8,"cvss_v3_vector":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N","cvss_v3_severity":"MEDIUM","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":null,"nvd_references":["https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=01"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:25:37.798621Z"},"effective_severity":"MEDIUM","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"L","value_label":"Low"},{"metric":"A","name":"Availability","value":"N","value_label":"None"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"samsung-mobile","vendor_name":"Samsung Mobile","product_slug":"secure-folder","product_name":"Secure Folder","version_start":"1.9.20.50 in Android 14, 1.8.11.0 in Android 13, and 1.7.04.0 in Android 12","version_start_inclusive":true,"version_end":"1.9.20.50 in Android 14, 1.8.11.0 in Android 13, and 1.7.04.0 in Android 12","version_end_inclusive":true,"cpe23_uri":"cve5:samsung-mobile:secure-folder:1.9.20.50 in Android 14, 1.8.11.0 in Android 13, and 1.7.04.0 in Android 12:1.9.20.50 in Android 14, 1.8.11.0 in Android 13, and 1.7.04.0 in Android 12"}],"exploit_refs":[],"news":[],"references":[{"url":"https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=01","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2025-02-04T07:19:45.024000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:42:01.967879Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:42:01.967879Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:42:01.967879Z","label":"CVSS score revised","source":"cvelistv5"}]}