Package
com.samsung.android.cmfa.framework
CMFA Framework
Package intelligence
Observed signing, permission, version and size signals from contributing devices - descriptive of that sample, not a verdict. These come from the v2 Package Search sync, which not every device has contributed to yet, so for some packages this detail is partial or not present at all.
- Signed by the device maker's own signing key (Samsung), so it is an OEM preinstall, but 2 different certificates appear across the fleet, so OEMs ship their own builds of it.
- Its largest observed manifest declares 15 permissions: 3 runtime (user-granted), 3 signature or system-level, 3 install-time and 6 vendor or uncatalogued.
- Never reported as user-facing, so it runs as a background or system component rather than an app the user opens.
Declared permissions (15)
Largest permission set observed for this package. Text is Android's own published description where one exists; platform permissions Android does not document show their granted protection level (in grey) instead; vendor or unknown constants show the name only.
| Permission | Description |
|---|---|
BLUETOOTH |
Allows the app to view the configuration of the Bluetooth on the phone, and to make and accept connections with paired devices. |
BLUETOOTH_ADMIN |
Allows the app to configure the local Bluetooth phone, and to discover and pair with remote devices. |
BLUETOOTH_ADVERTISE |
Allows the app to advertise to nearby Bluetooth devices |
BLUETOOTH_CONNECT |
Allows the app to connect to paired Bluetooth devices |
BLUETOOTH_SCAN |
Allows the app to discover and pair nearby Bluetooth devices |
FOREGROUND_SERVICE |
Allows the app to make use of foreground services. |
INTERACT_ACROSS_USERS |
Signature or privileged system permission. |
MANAGE_USERS |
Signature or privileged system permission. |
WRITE_SETTINGS |
Allows the app to modify the system's settings data. Malicious apps may corrupt your system's configuration. |
com.samsung.WATCH_APP_TYPE.Companion |
- |
com.samsung.accessory.permission.ACCESSORY_FRAMEWORK |
- |
com.samsung.android.cmfa.permission.ACCESS_PROVIDER |
- |
com.samsung.android.knox.permission.KNOX_PROTECTED_KEYSTORE |
- |
com.samsung.android.providers.context.permission.WRITE_USE_APP_FEATURE_SURVEY |
- |
com.samsung.wmanager.ENABLE_NOTIFICATION |
- |
Manage on devices
ADB commands for this package (the inverse of each is included so you can undo). Run from an authorised shell or wire the equivalent into your DPC. Verify on a test device first - this database doesn’t yet classify which packages are safe to change. --user 0 targets the current user; drop it (and use a privileged shell) to act device-wide.
/system, so Restore re-adds it (-k keeps app data)Seen on
Each record is a device profile (make + model + Android version). Each unique handset that syncs against a matching profile will increase the observations of a package, thereby increasing confidence that a package is expected to be on a device.
| OEM | Model | Android | Provenance | Observations | Last seen |
|---|---|---|---|---|---|
| Samsung | SM-A125F | Android 12 | OEM Samsung | 1 | 21 Jan 2026 |
| Samsung | SM-A515F | Android 13 | - | 1 | 30 Jun 2025 |
| Samsung | SM-A528B | Android 13 | - | 1 | 19 Jun 2025 |
| Samsung | SM-G780F | Android 13 | OEM Samsung | 1 | 29 Dec 2025 |
| Samsung | SM-G973U | Android 12 | OEM Samsung | 2 | 28 May 2026 |
| Samsung | SM-N986B | Android 13 | - | 9 | 17 Jul 2025 |
| Samsung | SM-T976B | Android 13 | - | 1 | 21 Jul 2025 |
Known labels
Locale-aware display names seen in the wild.
| Label | Locale | Seen |
|---|---|---|
| CMFA Framework | en-gb | 8 |
| CMFA Framework | es-us | 2 |
| CMFA Framework | 2 | |
| CMFA Framework | en-us | 1 |
| CMFA Framework | es-US | 1 |
| CMFA Framework | fr-FR | 1 |
| CMFA Framework | fr-fr | 1 |
| CMFA Framework | nl-nl | 1 |
| CMFA Framework | de-de | 1 |
| CMFA Framework | en-US | 1 |