CVE-2025-20895 Information

Description

Authentication Bypass Using an Alternate Path in Galaxy Store prior to version 4.5.87.6 allows physical attackers to install arbitrary applications to bypass restrictions of Setupwizard.

Reference

https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=01