Sithi

**Name of the Vulnerable Software and Affected Versions** Contacts versions prior to SMR Oct-2025 Release 1 **Description** An improper input validation issue exists in Contacts prior to the SMR Oct-2025 Release 1. This allows local attackers to access data across multiple user profiles. The vulnerability affects Samsung Mobile devices. **Recommendations** Update Contacts to SMR Oct-2025 Release 1 or later.

**Name of the Vulnerable Software and Affected Versions** Samsung Gallery versions prior to 14.5.10.3 in Global Android 13 Samsung Gallery version 14.5.09.3 in China Android 13 Samsung Gallery version 15.5.04.5 in Android 14 **Description** The issue is related to improper access control in Samsung Gallery, allowing physical attackers to access data across multiple user profiles. **Recommendations** For Samsung Gallery version 14.5.09.3 in China Android 13, update to a version later than 14.5.09.3. For Samsung Gallery version 15.5.04.5 in Android 14, update to a version later than 15.5.04.5. For Samsung Gallery versions prior to 14.5.10.3 in Global Android 13, update to version 14.5.10.3 or later.