PT-2025-32114 · Samsung · Wcsextension+1

Localh0Ster

Published

2025-03-21

Updated

2025-08-06

CVE-2025-21023

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Galaxy Watch WcsExtension versions prior to Android Watch 16

Description An improper access control issue exists in WcsExtension for Galaxy Watch. This allows local attackers to access sensitive information.

Recommendations Update to Android Watch 16 or later to resolve this issue.

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

BDU:2025-11601

CVE-2025-21023

Affected Products

Galaxy Watch

Wcsextension

PT-2025-32114 · Samsung · Wcsextension+1

CVE-2025-21023

Weakness Enumeration

Related Identifiers

Affected Products

References · 7