Severity by source
AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Lifecycle Timeline
3DescriptionCVE.org
Improper verification of cryptographic signature in Font Settings prior to SMR Mar-2026 Release 1 allows physical attackers to use custom font.
AnalysisAI
This vulnerability involves improper cryptographic signature verification in the Font Settings component of Samsung devices prior to the March 2026 Security Update Release 1. A physical attacker can bypass signature validation to install custom fonts, potentially leading to integrity compromise of system font resources. While the CVSS score is moderate at 5.1, the attack requires physical access and user interaction, limiting real-world exploitation frequency.
Technical ContextAI
The vulnerability exists in Samsung's Font Settings application, which manages system font installation and validation. The root cause is insufficient cryptographic signature verification (related to improper input validation and authentication weaknesses) when processing font files. Samsung devices use a signed font verification mechanism to ensure only authorized fonts are loaded into the system; this mechanism is bypassable through crafted font files that do not pass proper signature checks. The affected technology spans Samsung's font management subsystem across multiple device models running Android-based operating systems prior to the March 2026 security patch release. The weakness allows an attacker with physical device access to substitute legitimate fonts with malicious or custom variants without proper cryptographic validation.
RemediationAI
Apply the Samsung March 2026 Security Update Release 1 (SMR Mar-2026 Release 1) or any subsequent security patch to your Samsung device immediately. Navigate to Settings > About Phone > Software Updates and install the latest available security patch. Until patching is completed, physical security controls should be emphasized: avoid leaving devices unattended with unlocked screens, use biometric or PIN-based device locks, and educate users about the risks of allowing unknown parties to access their devices. Samsung has published patch availability and detailed instructions via their official security advisory at https://security.samsungmobile.com/
More in Jwt Attack
View allWhy is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Security Update Guide to update
Authentication bypass in SimpleHelp 5.5.15 and prior (plus 6.0 pre-release builds) allows remote unauthenticated attacke
Authentication bypass in Fortinet FortiOS, FortiProxy, and FortiSwitchManager allows unauthenticated remote attackers to
ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. Rated critical severity (CVS
ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. Rated critical severity (CVS
The package jsrsasign before 10.5.25 are vulnerable to Improper Verification of Cryptographic Signature when JWS or JWT
A library injection vulnerability exists in Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. Rated criti
A library injection vulnerability exists in the WebView.app helper app of Microsoft Teams (work or school) 24046.2813.27
A library injection vulnerability exists in the com.microsoft.teams2.modulehost.app helper app of Microsoft Teams (work
The Ruby SAML library is for implementing the client side of a SAML authorization. Rated critical severity (CVSS 9.8), t
cosign is a container signing and verification utility. Rated critical severity (CVSS 9.8), this vulnerability is remote
Biscuit is an authentication and authorization token for microservices architectures. Rated critical severity (CVSS 9.8)
Same technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-12295