Skip to main content

Samsung Mobile Devices

21 CVEs product

Monthly

CVE-2026-21031 MEDIUM This Month

Improper authorization in Samsung's AppBlock application on Android 15 and 16 devices allows a local, low-privileged attacker to launch arbitrary Android Activities without proper permission checks. Exploitation requires passive user interaction (CVSS 4.0 UI:P) and local device access, but the confidentiality impact on the vulnerable system is rated High (VC:H), consistent with the reported Information Disclosure tag. No public exploit code exists and the vulnerability is not listed in CISA's KEV catalog at time of analysis; Samsung has released a patch in SMR Jun-2026 Release 1.

Authentication Bypass Samsung Mobile Devices
NVD VulDB
CVSS 4.0
5.2
EPSS
0.0%
CVE-2026-21028 MEDIUM This Month

Improper access control in the AuditLogService component of Samsung Mobile Devices running Android 16 exposes sensitive audit log information to local attackers. The flaw, disclosed and patched by Samsung Mobile as part of their June 2026 Security Maintenance Release (SMR Jun-2026 Release 1), enables a local attacker without special privileges to both read and potentially modify sensitive data surfaced by the audit logging subsystem. No public exploit code has been identified at time of analysis, and this vulnerability is not listed in the CISA KEV catalog.

Information Disclosure Samsung Mobile Devices
NVD
CVSS 4.0
5.1
EPSS
0.0%
CVE-2026-21025 MEDIUM This Month

Incorrect privilege assignment in the Telephony component of Samsung Mobile devices prior to SMR Jun-2026 Release 1 permits local attackers to access sensitive information without requiring prior privileges or user interaction. Affecting devices running Android 14, 15, and 16, the flaw stems from improper access controls within the telephony subsystem. No public exploit code has been identified at time of analysis, and this CVE is not listed in the CISA KEV catalog, but the low attack complexity and absence of privilege prerequisites lower the bar for local exploitation.

Information Disclosure Samsung Mobile Devices
NVD
CVSS 4.0
6.9
EPSS
0.0%
CVE-2026-21017 MEDIUM This Month

Improper privilege handling in Samsung's SecTelephonyProvider component allows local attackers on Samsung Mobile Devices to access files that should be restricted to privileged processes. Affected devices run Android 14, 15, and 16 prior to the SMR Jun-2026 Release 1 patch, spanning the full current Samsung Android support matrix. No public exploit code exists and no KEV listing has been issued; the CVSS 4.0 score of 4.6 reflects constrained real-world impact due to required local access and active user interaction.

Information Disclosure Samsung Mobile Devices
NVD
CVSS 4.0
4.6
EPSS
0.0%
CVE-2026-21022 MEDIUM This Month

Improper handling of insufficient permissions in Routines prior to SMR May-2026 Release 1 allows local attackers to access sensitive information.

Information Disclosure Samsung Mobile Devices
NVD
CVSS 4.0
6.9
EPSS
0.0%
CVE-2026-21021 MEDIUM This Month

Improper input validation in Routines prior to SMR May-2026 Release 1 allows physical attackers to launch privileged activity.

Information Disclosure Samsung Mobile Devices
NVD
CVSS 4.0
5.1
EPSS
0.0%
CVE-2026-21019 HIGH This Week

Local privilege escalation in Samsung Galaxy Watch allows unprivileged local attackers to execute arbitrary code with system-level privileges by exploiting improper input validation in the FacAtFunction component. Affects Galaxy Watch devices running Android Watch 14 and 16 prior to Samsung's May 2026 security release (SMR May-2026 Release 1). EPSS score of 0.03% indicates low automated exploitation probability, and no active exploitation or public POC has been identified at time of analysis. Attack requires physical or ADB access to the device.

RCE Samsung Mobile Devices
NVD
CVSS 4.0
8.6
EPSS
0.0%
CVE-2026-21018 MEDIUM This Month

Out-of-bounds write in SveService prior to SMR May-2026 Release 1 allows local privileged attackers to execute arbitrary code.

RCE Buffer Overflow Memory Corruption Samsung Mobile Devices
NVD
CVSS 4.0
6.8
EPSS
0.0%
CVE-2026-21016 MEDIUM This Month

Incorrect privilege assignment in LocationManager prior to SMR May-2026 Release 1 allows local attackers to access sensitive information.

Information Disclosure Samsung Mobile Devices
NVD
CVSS 4.0
5.1
EPSS
0.0%
CVE-2026-21015 MEDIUM This Month

Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier.

Privilege Escalation Samsung Mobile Devices
NVD
CVSS 4.0
6.8
EPSS
0.0%
CVE-2026-21023 MEDIUM This Month

Insufficient verification of data authenticity in PackageManagerService prior to SMR Mar-2026 Release 1 allows local attackers to modify the installation restriction of specific application.

Information Disclosure Samsung Mobile Devices
NVD VulDB
CVSS 4.0
6.9
EPSS
0.0%
CVE-2026-21010 MEDIUM This Month

Improper input validation in Samsung Mobile Retail Mode prior to SMR April 2026 Release 1 allows local attackers with limited privileges to trigger privileged functions, potentially leading to information disclosure and unauthorized modification of device state. The vulnerability requires physical or local access and low-privilege credentials, limiting immediate remote exploitation risk but posing significant concern for retail environments where devices are physically accessible to untrusted parties.

Information Disclosure Samsung Mobile Devices
NVD VulDB
CVSS 3.1
6.6
EPSS
0.0%
CVE-2026-21008 MEDIUM This Month

Samsung Mobile S Share application prior to the April 2026 SMR Release 1 exposes sensitive information to adjacent network attackers without requiring authentication, achieved through a low-complexity attack requiring only user interaction. The vulnerability has a CVSS 5.1 score reflecting limited confidentiality impact over an adjacent network, and is addressed in the April 2026 security patch release.

Information Disclosure Samsung Mobile Devices
NVD VulDB
CVSS 4.0
5.1
EPSS
0.0%
CVE-2026-21012 MEDIUM This Month

External control of file name in Samsung AODManager prior to April 2026 SMR Release 1 allows privileged local attackers to create files with system privileges, potentially leading to privilege escalation or system compromise. The vulnerability requires high-level local privileges and affects Samsung Mobile devices through a path traversal or file name manipulation flaw in the AODManager component. No public exploit code has been identified at the time of analysis.

Information Disclosure Samsung Mobile Devices
NVD VulDB
CVSS 4.0
6.8
EPSS
0.0%
CVE-2026-21011 MEDIUM This Month

Bluetooth maintenance mode in Samsung Mobile devices prior to April 2026 SMR Release 1 permits physical attackers to bypass Extend Unlock authentication due to incorrect privilege assignment, enabling unauthorized device access without requiring prior authentication. The vulnerability requires physical proximity and user interaction but grants full confidentiality and integrity compromise of the device. No public exploit code has been identified at the time of analysis.

Authentication Bypass Samsung Mobile Devices
NVD VulDB
CVSS 4.0
5.4
EPSS
0.0%
CVE-2026-21009 MEDIUM This Month

Samsung Mobile's Recents application prior to SMR Apr-2026 Release 1 fails to properly validate exceptional conditions, allowing a physical attacker to bypass App Pinning security controls. The vulnerability requires physical device access and has a CVSS score of 4.1 reflecting the physical attack vector and confidentiality impact; no public exploit code or confirmed active exploitation has been identified.

Authentication Bypass Samsung Mobile Devices
NVD VulDB
CVSS 4.0
4.1
EPSS
0.0%
CVE-2026-21007 MEDIUM This Month

Device Care in Samsung Mobile devices prior to the April 2026 SMR Release 1 contains an improper exception handling vulnerability that permits physical attackers to bypass Knox Guard authentication enforcement. With a CVSS score of 4.4 and attack vector requiring physical access, this vulnerability poses a localized but serious integrity and confidentiality risk to device security architecture, particularly for devices left unattended or in corporate environments where physical access controls may be compromised.

Authentication Bypass Samsung Mobile Devices
NVD VulDB
CVSS 4.0
4.4
EPSS
0.0%
CVE-2026-21003 MEDIUM This Month

Improper input validation in Samsung Mobile devices prior to SMR April 2026 Release 1 allows physical attackers to bypass network restrictions without authentication. The vulnerability affects data handling related to network restriction policies, enabling unauthorized modification of network access controls. CVSS score of 5.2 reflects the physical attack requirement, though integrity and availability impacts are rated high for affected functions.

Authentication Bypass Samsung Mobile Devices
NVD
CVSS 4.0
5.2
EPSS
0.0%
CVE-2026-20992 LOW Monitor

An improper authorization vulnerability in Samsung Settings allows a local attacker with low privileges to disable configuration of background data usage for applications prior to the SMR Mar-2026 Release 1 patch. While the CVSS score of 4.8 is moderate, the vulnerability has limited impact as it only affects the integrity of data usage settings without enabling data exfiltration or system compromise. The local attack vector and requirement for user-level privileges significantly reduce real-world exploitation likelihood compared to remote or privilege-escalation vulnerabilities.

Authentication Bypass Samsung Mobile Devices
NVD VulDB
CVSS 3.1
3.3
EPSS
0.0%
CVE-2026-20991 MEDIUM This Month

ThemeManager prior to the SMR Mar-2026 Release 1 contains an improper privilege management vulnerability that allows local privileged attackers to inappropriately reuse trial contents, potentially circumventing licensing restrictions or trial period limitations. With a CVSS score of 6.7 and requiring high privileges (PR:H) but no user interaction, this vulnerability poses a moderate integrity risk in environments where multiple privileged users share access to ThemeManager systems. No public proof-of-concept or active exploitation has been reported in the CVE record, and this does not appear on CISA's KEV catalog, suggesting limited real-world weaponization at present.

Information Disclosure Samsung Mobile Devices
NVD VulDB
CVSS 3.1
4.4
EPSS
0.0%
CVE-2026-20988 MEDIUM This Month

A broadcast receiver in Android Settings fails to properly verify intents prior to the March 2026 Security Maintenance Release 1, allowing a local attacker with limited privileges to launch arbitrary activities with Settings-level permissions. The vulnerability requires user interaction to trigger and carries a CVSS 4.0 score of 6.8, reflecting high confidentiality and integrity impact. No public exploit or KEV designation is currently documented, but the local attack vector and privilege escalation potential warrant prompt patching.

Information Disclosure Samsung Mobile Devices
NVD VulDB
CVSS 3.1
5.0
EPSS
0.0%
EPSS 0% CVSS 5.2
MEDIUM This Month

Improper authorization in Samsung's AppBlock application on Android 15 and 16 devices allows a local, low-privileged attacker to launch arbitrary Android Activities without proper permission checks. Exploitation requires passive user interaction (CVSS 4.0 UI:P) and local device access, but the confidentiality impact on the vulnerable system is rated High (VC:H), consistent with the reported Information Disclosure tag. No public exploit code exists and the vulnerability is not listed in CISA's KEV catalog at time of analysis; Samsung has released a patch in SMR Jun-2026 Release 1.

Authentication Bypass Samsung Mobile Devices
NVD VulDB
EPSS 0% CVSS 5.1
MEDIUM This Month

Improper access control in the AuditLogService component of Samsung Mobile Devices running Android 16 exposes sensitive audit log information to local attackers. The flaw, disclosed and patched by Samsung Mobile as part of their June 2026 Security Maintenance Release (SMR Jun-2026 Release 1), enables a local attacker without special privileges to both read and potentially modify sensitive data surfaced by the audit logging subsystem. No public exploit code has been identified at time of analysis, and this vulnerability is not listed in the CISA KEV catalog.

Information Disclosure Samsung Mobile Devices
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

Incorrect privilege assignment in the Telephony component of Samsung Mobile devices prior to SMR Jun-2026 Release 1 permits local attackers to access sensitive information without requiring prior privileges or user interaction. Affecting devices running Android 14, 15, and 16, the flaw stems from improper access controls within the telephony subsystem. No public exploit code has been identified at time of analysis, and this CVE is not listed in the CISA KEV catalog, but the low attack complexity and absence of privilege prerequisites lower the bar for local exploitation.

Information Disclosure Samsung Mobile Devices
NVD
EPSS 0% CVSS 4.6
MEDIUM This Month

Improper privilege handling in Samsung's SecTelephonyProvider component allows local attackers on Samsung Mobile Devices to access files that should be restricted to privileged processes. Affected devices run Android 14, 15, and 16 prior to the SMR Jun-2026 Release 1 patch, spanning the full current Samsung Android support matrix. No public exploit code exists and no KEV listing has been issued; the CVSS 4.0 score of 4.6 reflects constrained real-world impact due to required local access and active user interaction.

Information Disclosure Samsung Mobile Devices
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

Improper handling of insufficient permissions in Routines prior to SMR May-2026 Release 1 allows local attackers to access sensitive information.

Information Disclosure Samsung Mobile Devices
NVD
EPSS 0% CVSS 5.1
MEDIUM This Month

Improper input validation in Routines prior to SMR May-2026 Release 1 allows physical attackers to launch privileged activity.

Information Disclosure Samsung Mobile Devices
NVD
EPSS 0% CVSS 8.6
HIGH This Week

Local privilege escalation in Samsung Galaxy Watch allows unprivileged local attackers to execute arbitrary code with system-level privileges by exploiting improper input validation in the FacAtFunction component. Affects Galaxy Watch devices running Android Watch 14 and 16 prior to Samsung's May 2026 security release (SMR May-2026 Release 1). EPSS score of 0.03% indicates low automated exploitation probability, and no active exploitation or public POC has been identified at time of analysis. Attack requires physical or ADB access to the device.

RCE Samsung Mobile Devices
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

Out-of-bounds write in SveService prior to SMR May-2026 Release 1 allows local privileged attackers to execute arbitrary code.

RCE Buffer Overflow Memory Corruption +1
NVD
EPSS 0% CVSS 5.1
MEDIUM This Month

Incorrect privilege assignment in LocationManager prior to SMR May-2026 Release 1 allows local attackers to access sensitive information.

Information Disclosure Samsung Mobile Devices
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier.

Privilege Escalation Samsung Mobile Devices
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

Insufficient verification of data authenticity in PackageManagerService prior to SMR Mar-2026 Release 1 allows local attackers to modify the installation restriction of specific application.

Information Disclosure Samsung Mobile Devices
NVD VulDB
EPSS 0% CVSS 6.6
MEDIUM This Month

Improper input validation in Samsung Mobile Retail Mode prior to SMR April 2026 Release 1 allows local attackers with limited privileges to trigger privileged functions, potentially leading to information disclosure and unauthorized modification of device state. The vulnerability requires physical or local access and low-privilege credentials, limiting immediate remote exploitation risk but posing significant concern for retail environments where devices are physically accessible to untrusted parties.

Information Disclosure Samsung Mobile Devices
NVD VulDB
EPSS 0% CVSS 5.1
MEDIUM This Month

Samsung Mobile S Share application prior to the April 2026 SMR Release 1 exposes sensitive information to adjacent network attackers without requiring authentication, achieved through a low-complexity attack requiring only user interaction. The vulnerability has a CVSS 5.1 score reflecting limited confidentiality impact over an adjacent network, and is addressed in the April 2026 security patch release.

Information Disclosure Samsung Mobile Devices
NVD VulDB
EPSS 0% CVSS 6.8
MEDIUM This Month

External control of file name in Samsung AODManager prior to April 2026 SMR Release 1 allows privileged local attackers to create files with system privileges, potentially leading to privilege escalation or system compromise. The vulnerability requires high-level local privileges and affects Samsung Mobile devices through a path traversal or file name manipulation flaw in the AODManager component. No public exploit code has been identified at the time of analysis.

Information Disclosure Samsung Mobile Devices
NVD VulDB
EPSS 0% CVSS 5.4
MEDIUM This Month

Bluetooth maintenance mode in Samsung Mobile devices prior to April 2026 SMR Release 1 permits physical attackers to bypass Extend Unlock authentication due to incorrect privilege assignment, enabling unauthorized device access without requiring prior authentication. The vulnerability requires physical proximity and user interaction but grants full confidentiality and integrity compromise of the device. No public exploit code has been identified at the time of analysis.

Authentication Bypass Samsung Mobile Devices
NVD VulDB
EPSS 0% CVSS 4.1
MEDIUM This Month

Samsung Mobile's Recents application prior to SMR Apr-2026 Release 1 fails to properly validate exceptional conditions, allowing a physical attacker to bypass App Pinning security controls. The vulnerability requires physical device access and has a CVSS score of 4.1 reflecting the physical attack vector and confidentiality impact; no public exploit code or confirmed active exploitation has been identified.

Authentication Bypass Samsung Mobile Devices
NVD VulDB
EPSS 0% CVSS 4.4
MEDIUM This Month

Device Care in Samsung Mobile devices prior to the April 2026 SMR Release 1 contains an improper exception handling vulnerability that permits physical attackers to bypass Knox Guard authentication enforcement. With a CVSS score of 4.4 and attack vector requiring physical access, this vulnerability poses a localized but serious integrity and confidentiality risk to device security architecture, particularly for devices left unattended or in corporate environments where physical access controls may be compromised.

Authentication Bypass Samsung Mobile Devices
NVD VulDB
EPSS 0% CVSS 5.2
MEDIUM This Month

Improper input validation in Samsung Mobile devices prior to SMR April 2026 Release 1 allows physical attackers to bypass network restrictions without authentication. The vulnerability affects data handling related to network restriction policies, enabling unauthorized modification of network access controls. CVSS score of 5.2 reflects the physical attack requirement, though integrity and availability impacts are rated high for affected functions.

Authentication Bypass Samsung Mobile Devices
NVD
EPSS 0% CVSS 3.3
LOW Monitor

An improper authorization vulnerability in Samsung Settings allows a local attacker with low privileges to disable configuration of background data usage for applications prior to the SMR Mar-2026 Release 1 patch. While the CVSS score of 4.8 is moderate, the vulnerability has limited impact as it only affects the integrity of data usage settings without enabling data exfiltration or system compromise. The local attack vector and requirement for user-level privileges significantly reduce real-world exploitation likelihood compared to remote or privilege-escalation vulnerabilities.

Authentication Bypass Samsung Mobile Devices
NVD VulDB
EPSS 0% CVSS 4.4
MEDIUM This Month

ThemeManager prior to the SMR Mar-2026 Release 1 contains an improper privilege management vulnerability that allows local privileged attackers to inappropriately reuse trial contents, potentially circumventing licensing restrictions or trial period limitations. With a CVSS score of 6.7 and requiring high privileges (PR:H) but no user interaction, this vulnerability poses a moderate integrity risk in environments where multiple privileged users share access to ThemeManager systems. No public proof-of-concept or active exploitation has been reported in the CVE record, and this does not appear on CISA's KEV catalog, suggesting limited real-world weaponization at present.

Information Disclosure Samsung Mobile Devices
NVD VulDB
EPSS 0% CVSS 5.0
MEDIUM This Month

A broadcast receiver in Android Settings fails to properly verify intents prior to the March 2026 Security Maintenance Release 1, allowing a local attacker with limited privileges to launch arbitrary activities with Settings-level permissions. The vulnerability requires user interaction to trigger and carries a CVSS 4.0 score of 6.8, reflecting high confidentiality and integrity impact. No public exploit or KEV designation is currently documented, but the local attack vector and privilege escalation potential warrant prompt patching.

Information Disclosure Samsung Mobile Devices
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy