This page lists publicly disclosed CVE vulnerabilities affecting samsung android (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-21031 | Improper authorization in AppBlock prior to SMR Jun-2026 Release 1 allows local attacker to launch arbitrary activity. User interaction is required for triggering this vulnerability. | [email protected] | 5.2 | 0.09% | 2026-06-05 | 2026-06-17 |
| CVE-2026-21030 | Improper access control in MediaTek Audio HAL prior to SMR Jun-2026 Release 1 allows local attackers to trigger privileged functions. | [email protected] | 6.4 | 0.09% | 2026-06-05 | 2026-06-17 |
| CVE-2026-21029 | Improper export of android application components in Galaxy Editing Service prior to SMR Jun-2026 Release 1 allows local attacker to execute privileged operations. | [email protected] | 6.8 | 0.09% | 2026-06-05 | 2026-06-17 |
| CVE-2026-21028 | Improper access control in AuditLogService prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information. | [email protected] | 5.1 | 0.09% | 2026-06-05 | 2026-06-17 |
| CVE-2026-21027 | Improper export of android application components in ImsSettings prior to SMR Jun-2026 Release 1 allows local attackers to trigger logging function. | [email protected] | 4.8 | 0.08% | 2026-06-05 | 2026-06-17 |
| CVE-2026-21026 | Improper export of android application components in SpriteWallpaper prior to SMR Jun-2026 Release 1 allows local attackers to access to sensitive information. | [email protected] | 6.4 | 0.09% | 2026-06-05 | 2026-06-17 |
| CVE-2026-21025 | Incorrect privilege assignment in Telephony prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information. | [email protected] | 6.9 | 0.09% | 2026-06-05 | 2026-06-17 |
| CVE-2026-21017 | Improper handling of insufficient privileges in SecTelephonyProvider prior to SMR Jun-2026 Release 1 allows local attackers to access privileged files. | [email protected] | 4.6 | 0.09% | 2026-06-05 | 2026-06-17 |
| CVE-2026-21022 | Improper handling of insufficient permissions in Routines prior to SMR May-2026 Release 1 allows local attackers to access sensitive information. | [email protected] | 6.9 | 0.09% | 2026-05-13 | 2026-06-17 |
| CVE-2026-21021 | Improper input validation in Routines prior to SMR May-2026 Release 1 allows physical attackers to launch privileged activity. | [email protected] | 5.1 | 0.21% | 2026-05-13 | 2026-06-17 |
| CVE-2026-21020 | Improper export of android application components in OmaCP prior to SMR May-2026 Release 1 allows local attackers to trigger privileged functions. | [email protected] | 5.1 | 0.09% | 2026-05-13 | 2026-06-17 |
| CVE-2026-21018 | Out-of-bounds write in SveService prior to SMR May-2026 Release 1 allows local privileged attackers to execute arbitrary code. | [email protected] | 6.8 | 0.15% | 2026-05-13 | 2026-06-17 |
| CVE-2026-21016 | Incorrect privilege assignment in LocationManager prior to SMR May-2026 Release 1 allows local attackers to access sensitive information. | [email protected] | 5.1 | 0.09% | 2026-05-13 | 2026-06-17 |
| CVE-2026-21015 | Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier. | [email protected] | 6.8 | 0.09% | 2026-05-13 | 2026-06-17 |
| CVE-2026-21023 | Insufficient verification of data authenticity in PackageManagerService prior to SMR Mar-2026 Release 1 allows local attackers to modify the installation restriction of specific application. | [email protected] | 6.9 | 0.10% | 2026-04-29 | 2026-06-17 |
| CVE-2026-21012 | External control of file name in AODManager prior to SMR Apr-2026 Release 1 allows privileged local attacker to create file with system privilege. | [email protected] | 6.8 | 0.09% | 2026-04-13 | 2026-06-17 |
| CVE-2026-21011 | Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Extend Unlock. | [email protected] | 5.4 | 0.15% | 2026-04-13 | 2026-06-17 |
| CVE-2026-21010 | Improper input validation in Retail Mode prior to SMR Apr-2026 Release 1 allows local attackers to trigger privileged functions. | [email protected] | 6.6 | 0.10% | 2026-04-13 | 2026-06-17 |
| CVE-2026-21009 | Improper check for exceptional conditions in Recents prior to SMR Apr-2026 Release 1 allows physical attacker to bypass App Pinning. | [email protected] | 4.1 | 0.23% | 2026-04-13 | 2026-06-17 |
| CVE-2026-21008 | Exposure of sensitive information in S Share prior to SMR Apr-2026 Release 1 allows adjacent attacker to access sensitive information. | [email protected] | 5.1 | 0.16% | 2026-04-13 | 2026-06-17 |