CVE-2025-20665 – Samsung Android SELinux Policy Missing Disclosure Vulnerability

May 4, 2025

CVE ID : CVE-2025-20665

Published : May 5, 2025, 3:15 a.m. | 17 minutes ago

Description : In devinfo, there is a possible information disclosure due to a missing SELinux policy. This could lead to local information disclosure of device identifier with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09555228; Issue ID: MSV-2760.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-20666 – “Modem Rogue Base Station Denial of Service Vulnerability”

Next Article CVE-2025-4273 – Intel UEFI Secure Boot Signature Validation Bypass

Highlights

CVE-2025-46348 – YesWiki Unauthenticated Archive Creation and Download Vulnerability

April 29, 2025

CVE ID : CVE-2025-46348

Published : April 29, 2025, 9:15 p.m. | 1 hour, 52 minutes ago

Description : YesWiki is a wiki system written in PHP. Prior to version 4.5.4, the request to commence a site backup can be performed and downloaded without authentication. The archives are created with a predictable filename, so a malicious user could create and download an archive without being authenticated. This could result in a malicious attacker making numerous requests to create archives and fill up the file system, or by downloading the archive which contains sensitive site information. This issue has been patched in version 4.5.4.

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

Borderlands 4 is killing off a tired “FOMO” trend — I hope other developers follow suit

Dr. Axel’s JavaScript flashcards

Dr. Axel’s JavaScript flashcards

Syntax-Highlight – Custom Element For Syntax Highlighting Content

WelsonJS – Build a Windows app on the Windows built-in JavaScript engine

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

CVE-2025-20665 – Samsung Android SELinux Policy Missing Disclosure Vulnerability

CVE-2025-49763: Apache Traffic Server Vulnerability Enables Memory Exhaustion Attacks

IBM QRadar SIEM Exposed by Trio of Security Flaws, Including Critical Command Execution Bug

Unlocking AI-First Strategy at Agentforce World Tour Boston

Google Chrome Zero-Day CVE-2025-2783 Exploited by TaxOff to Deploy Trinper Backdoor

Development Release: Elive 3.8.48 (Beta)

New to Linux? 4 things to focus on before you switch

CVE-2025-46348 – YesWiki Unauthenticated Archive Creation and Download Vulnerability

12.2TB of User Data Exposed in Passion.io Breach: Over 3.6 Million Records Left Unprotected

Google’s One AI Premium plan with Gemini Advanced is now free for students – for an entire year

CVE-2025-5283 – Google Chrome libvpx Use-After-Free Heap Corruption Vulnerability

CVE-2025-20665 – Samsung Android SELinux Policy Missing Disclosure Vulnerability

Related Posts