关键漏洞信息 1. CVE-2025-21450 (Critical) 影响: Android 14, 15 描述: Out-of-bounds write in KnoxVault trustlet 修复: Patch adds proper tpu validation. 2. SVE-2025-2335 (CVE-2025-21004) (Moderate) 影响: Galaxy Watch 描述: Improper verification of intent by broadcast receiver in SystemUI for Galaxy Watch 修复: The patch adds proper authorization logic. 3. SVE-2025-0047C (CVE-2025-20977) (Moderate) 影响: Galaxy Watch 描述: Incorrect default permission in Framework for Galaxy Watch 修复: The patch removes unused code. 4. SVE-2025-0123C (CVE-2025-20998) (Moderate) 影响: SamsungAccount for Galaxy Watch 描述: Improper access control in SamsungAccount for Galaxy Watch 修复: The patch adds proper access control. 5. SVE-2025-0348C (CVE-2025-20999) (Moderate) 影响: Galaxy Tablet 描述: Improper authorization in accessing saved Wi-Fi password for Galaxy Tablet 修复: The patch adds proper authorization validation logic. 6. SVE-2025-0664C (CVE-2025-21000) (Moderate) 影响: Bluetooth 描述: Improper privilege management in Bluetooth 修复: The patch adds proper authorization logic. 7. SVE-2025-0675C (CVE-2025-21001) (Moderate) 影响: LeAudioService 描述: Improper access control in LeAudioService 修复: The patch adds proper access control. 8. SVE-2025-0710C (CVE-2025-21003) (Moderate) 影响: Emergency SOS 描述: Insecure storage of sensitive information in Emergency SOS 修复: The patch was modified to securely save sensitive information. ``` 这些漏洞涵盖了从关键到中等严重程度的问题,涉及多个组件和功能,如KnoxVault、Galaxy Watch、SamsungAccount、Wi-Fi密码管理、Bluetooth、LeAudioService和Emergency SOS。每个漏洞都提供了详细的修复措施,确保设备的安全性得到提升。