Login Sign Up

CVE-2025-21064

8.8 HIGH
Authentication Bypass

📋 TL;DR

This vulnerability allows attackers on the same network to bypass authentication in Samsung Smart Switch and access data being transferred between devices. It affects Smart Switch versions before 3.7.66.6. Users transferring sensitive data via Smart Switch on shared networks are at risk.

💻 Affected Systems

Products:
  • Samsung Smart Switch
Versions: All versions prior to 3.7.66.6
Operating Systems: Windows, macOS
Default Config Vulnerable: ⚠️ Yes
Notes: Affects both Windows and macOS versions of Smart Switch. Mobile versions may also be affected but not explicitly stated in the advisory.

📦 What is this software?

Smart Switch by Samsung

View all CVEs affecting Smart Switch →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers intercept sensitive personal data (photos, messages, documents) during device transfers, potentially leading to identity theft, blackmail, or corporate espionage.

🟠

Likely Case

Unauthorized access to personal media files, contacts, and messages being transferred between devices on public Wi-Fi or shared networks.

🟢

If Mitigated

Limited exposure if using isolated networks, but still vulnerable to insider threats or compromised devices on the same network segment.

🌐 Internet-Facing: MEDIUM - While the vulnerability requires adjacent network access, many users transfer data on public Wi-Fi networks where attackers could be present.
🏢 Internal Only: HIGH - In corporate environments, any attacker on the internal network could exploit this to access sensitive data transfers between employee devices.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

The vulnerability requires adjacent network access but no authentication, making it relatively easy to exploit for attackers on the same network.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 3.7.66.6

Vendor Advisory: https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=10

Restart Required: Yes

Instructions:

1. Open Samsung Smart Switch. 2. Go to Help > Check for Updates. 3. If update to 3.7.66.6 is available, install it. 4. Restart Smart Switch after installation completes.

🔧 Temporary Workarounds

Disable Smart Switch Network Transfers

all

Temporarily disable Smart Switch's network functionality and use USB cable transfers only

Not applicable - configuration change in application

Network Segmentation

all

Isolate devices using Smart Switch on dedicated VLAN or network segment

# Example for network isolation
# Configure firewall rules to restrict Smart Switch traffic
# Use VLAN segmentation for device transfer networks

🧯 If You Can't Patch

  • Use USB cable transfers only instead of wireless transfers
  • Ensure Smart Switch is only used on trusted, isolated networks (not public Wi-Fi)

🔍 How to Verify

Check if Vulnerable:

Open Smart Switch, go to Help > About Smart Switch, check if version is below 3.7.66.6

Check Version:

Not applicable - check through application GUI (Help > About Smart Switch)

Verify Fix Applied:

After updating, verify version shows 3.7.66.6 or higher in Help > About Smart Switch

📡 Detection & Monitoring

Log Indicators:

  • Unexpected network connections to Smart Switch ports
  • Multiple failed authentication attempts followed by successful data transfer

Network Indicators:

  • Unusual data transfer patterns from Smart Switch to unexpected IP addresses
  • Traffic on Smart Switch ports (default 54925) from unauthorized sources

SIEM Query:

source_port:54925 AND (dest_ip NOT IN [trusted_device_ips]) OR (auth_failure_count > 0 AND subsequent_data_transfer)

📊 Metadata

CVE ID: CVE-2025-21064
CVSS v3 Score: 8.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score: 0.05% exploit probability (16.5th percentile)
Published: October 10, 2025
Last Updated: October 28, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON