CVE-2025-20973

Medium

5.4/10

Summary

Improper authentication in Secure Folder prior to version 1.8.12.0 in Android 13, and 1.9.21.00 in Android 14 allows physical attackers to reset the lock type of Secure Folder.

Attack Complexity: LOW
Attack Vector: PHYSICAL
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: HIGH
Confidentiality Impact: HIGH
Availability Impact: NONE

References

Advisory Timeline

Published May 07, 2025

CVE-2025-20973

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS