Samsung · Spengesture Service · CVE-2025-20962
**Name of the Vulnerable Software and Affected Versions**
SpenGesture service versions prior to SMR May-2025 Release 1
**Description**
The issue is related to the improper handling of insufficient permission in the SpenGesture service, allowing local attackers to track the S Pen position.
**Recommendations**
For versions prior to SMR May-2025 Release 1, update to SMR May-2025 Release 1 or later to resolve the issue.