CVE-2021-25397: 
NixOS vulnerability analysis and mitigation

An improper access control vulnerability was discovered in Samsung's TelephonyUI application prior to SMR MAY-2021 Release 1. The vulnerability, tracked as CVE-2021-25397, allows local attackers to write arbitrary files of telephony process via untrusted applications (NVD, AttackerKB).

The vulnerability exists in the receiver component com.samsung.android.app.telephonyui.carrierui.photoring.model.PhotoringReceiver, which is exported. The vulnerability allows attackers to save files from a specified URL to an arbitrary path. The only requirement for exploitation is that the content-type of the server response should be image/ or video/ (Oversecured Blog).

The vulnerability could allow attackers to overwrite the file storing SMS/MMS messages with malicious content, potentially leading to data manipulation and unauthorized access to sensitive information (Hacker News, Oversecured Blog).

Samsung addressed this vulnerability in the SMR MAY-2021 Release 1 security update. Users are recommended to update their devices to the latest available firmware version to protect against this vulnerability (Samsung Mobile Security).