CVE-2025-20926 – This vulnerability in Samsung's My Files app on... (How to Fix)

Q: What is the severity of CVE-2025-20926?

CVE-2025-20926 has a CVSS score of 5.5 (MEDIUM). This vulnerability in Samsung's My Files app on Android 14 allows local attackers to improperly access files with the app's elevated privileges. It affects Samsung devices running Android 14 with My Files versions prior to 15.0.07.5. Attackers must have physical access or local execution on the device.

📋 TL;DR

This vulnerability in Samsung's My Files app on Android 14 allows local attackers to improperly access files with the app's elevated privileges. It affects Samsung devices running Android 14 with My Files versions prior to 15.0.07.5. Attackers must have physical access or local execution on the device.

💻 Affected Systems

Products:

Samsung My Files app

Versions: Versions prior to 15.0.07.5

Operating Systems: Android 14

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects Samsung devices with the vulnerable My Files version on Android 14. Other Android devices or versions are not affected.

📦 What is this software?

Myfiles by Samsung

View all CVEs affecting Myfiles →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Local attackers could access sensitive files stored by My Files, potentially including documents, media, or other protected content that should be restricted.

🟠

Likely Case

Malicious apps or users with local access could read files they shouldn't have permission to access, leading to data leakage.

🟢

If Mitigated

With proper app sandboxing and updated software, the vulnerability is eliminated and file access remains properly restricted.

🌐 Internet-Facing: LOW - This is a local vulnerability requiring physical or local access to the device.

🏢 Internal Only: MEDIUM - Internal users with device access could exploit this, but requires local execution privileges.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires local access to the device and knowledge of Android component exploitation. No public exploit code is known.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 15.0.07.5

Vendor Advisory: https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=03

Restart Required: No

Instructions:

1. Open Samsung Galaxy Store or Google Play Store. 2. Search for 'My Files'. 3. Update to version 15.0.07.5 or later. 4. Alternatively, wait for automatic updates from Samsung.

🔧 Temporary Workarounds

Disable My Files app

android

Temporarily disable the vulnerable My Files application to prevent exploitation.

adb shell pm disable-user --user 0 com.sec.android.app.myfiles

Use alternative file manager

android

Install and use a different file manager app while waiting for patch.

🧯 If You Can't Patch

Restrict physical access to devices and implement mobile device management (MDM) controls.
Monitor for suspicious file access patterns and implement application whitelisting.

🔍 How to Verify

Check if Vulnerable:

Check My Files app version in Settings > Apps > My Files > App info. If version is below 15.0.07.5, device is vulnerable.

Check Version:

adb shell dumpsys package com.sec.android.app.myfiles | grep versionName

Verify Fix Applied:

Confirm My Files version is 15.0.07.5 or higher in app settings.

📡 Detection & Monitoring

Log Indicators:

Unusual file access patterns from My Files app
Attempts to access protected storage areas

Network Indicators:

Not applicable - local vulnerability only

SIEM Query:

Not applicable for this local Android vulnerability

📊 Metadata

CVE ID: CVE-2025-20926

CVSS v3 Score: 5.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS Score: 0.03% exploit probability (6.8th percentile)

Published: March 6, 2025

Last Updated: October 3, 2025

🔗 References

https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=03 Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON