CVE-2025-21044

Unknown Unknown - Not Provided

BaseFortify

Publication date: 2025-10-10

Last updated on: 2025-10-23

Assigner: Samsung Mobile

Description

Out-of-bounds write in fingerprint trustlet prior to SMR Oct-2025 Release 1 allows local privileged attackers to write out-of-bounds memory.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2025-10-10

Last Modified

2025-10-23

Generated

2026-05-07

AI Q&A

2025-10-10

EPSS Evaluated

2026-05-05

NVD

CVE-2025-21044

Affected Vendors & Products

Vendor	Product	Version / Range
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	13.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	14.0
samsung	android	15.0
samsung	android	15.0
samsung	android	15.0
samsung	android	15.0
samsung	android	15.0
samsung	android	15.0
samsung	android	15.0
samsung	android	15.0
samsung	android	16.0
samsung	android	16.0
samsung	android	16.0

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-787	The product writes data past the end, or before the beginning, of the intended buffer.

Attack-Flow Graph

AI Powered Q&A

Can you explain this vulnerability to me?

This vulnerability is an out-of-bounds write issue in the fingerprint trustlet component before the SMR Oct-2025 Release 1. It allows local attackers with privileged access to write data outside the intended memory boundaries, potentially leading to memory corruption.

How can this vulnerability impact me? :

The vulnerability can allow a local privileged attacker to corrupt memory by writing out-of-bounds, which may lead to unauthorized modification of data or system instability. Given the CVSS score, it can impact confidentiality and integrity but does not affect availability.

Ask Our AI Assistant

Need more information? Ask your question to get an AI reply (Powered by our expertise)

0/70

CVE-2025-21044

BaseFortify

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Powered Q&A

Ask Our AI Assistant

EPSS Chart