Samsung Android vulnerabilities

CVE-2026-21010 [HIGH] CVE-2026-21010: Improper input validation in Retail Mode prior to SMR Apr-2026 Release 1 allows local attackers to t Improper input validation in Retail Mode prior to SMR Apr-2026 Release 1 allows local attackers to trigger privileged functions.

CVE-2026-21007 [MEDIUM] CWE-754 CVE-2026-21007: Improper check for exceptional conditions in Device Care prior to SMR Apr-2026 Release 1 allows phys Improper check for exceptional conditions in Device Care prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Knox Guard.

CVE-2026-21012 [MEDIUM] CVE-2026-21012: External control of file name in AODManager prior to SMR Apr-2026 Release 1 allows privileged local External control of file name in AODManager prior to SMR Apr-2026 Release 1 allows privileged local attacker to create file with system privilege.

CVE-2026-21006 [MEDIUM] CVE-2026-21006: Improper access control in Samsung DeX prior to SMR Apr-2026 Release 1 allows physical attackers to Improper access control in Samsung DeX prior to SMR Apr-2026 Release 1 allows physical attackers to access to hidden notification contents.

CVE-2026-21011 [MEDIUM] CWE-732 CVE-2026-21011: Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allo Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Extend Unlock.

CVE-2026-21008 [MEDIUM] CVE-2026-21008: Exposure of sensitive information in S Share prior to SMR Apr-2026 Release 1 allows adjacent attacke Exposure of sensitive information in S Share prior to SMR Apr-2026 Release 1 allows adjacent attacker to access sensitive information.

CVE-2026-20990 [HIGH] CVE-2026-20990: Improper export of android application components in Secure Folder prior to SMR Mar-2026 Release 1 a Improper export of android application components in Secure Folder prior to SMR Mar-2026 Release 1 allows local attackers to launch arbitrary activity with Secure Folder privilege.

CVE-2026-20989 [MEDIUM] CWE-347 CVE-2026-20989: Improper verification of cryptographic signature in Font Settings prior to SMR Mar-2026 Release 1 al Improper verification of cryptographic signature in Font Settings prior to SMR Mar-2026 Release 1 allows physical attackers to use custom font.

CVE-2026-20991 [MEDIUM] CVE-2026-20991: Improper privilege management in ThemeManager prior to SMR Mar-2026 Release 1 allows local privilege Improper privilege management in ThemeManager prior to SMR Mar-2026 Release 1 allows local privileged attackers to reuse trial contents.

CVE-2026-20992 [MEDIUM] CWE-863 CVE-2026-20992: Improper authorization in Settings prior to SMR Mar-2026 Release 1 allows local attacker to disable Improper authorization in Settings prior to SMR Mar-2026 Release 1 allows local attacker to disable configuring the background data usage of application.

CVE-2026-20988 [MEDIUM] CVE-2026-20988: Improper verification of intent by broadcast receiver in Settings prior to SMR Mar-2026 Release 1 al Improper verification of intent by broadcast receiver in Settings prior to SMR Mar-2026 Release 1 allows local attacker to launch arbitrary activity with Settings privilege. User interaction is required for triggering this vulnerability.

CVE-2026-20983 [HIGH] CVE-2026-20983: Improper export of android application components in Samsung Dialer prior to SMR Feb-2026 Release 1 Improper export of android application components in Samsung Dialer prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Samsung Dialer privilege.

CVE-2026-20980 [HIGH] CVE-2026-20980: Improper input validation in PACM prior to SMR Feb-2026 Release 1 allows physical attacker to execut Improper input validation in PACM prior to SMR Feb-2026 Release 1 allows physical attacker to execute arbitrary commands.

CVE-2026-20979 [HIGH] CVE-2026-20979: Improper privilege management in Settings prior to SMR Feb-2026 Release 1 allows local attackers to Improper privilege management in Settings prior to SMR Feb-2026 Release 1 allows local attackers to launch arbitrary activity with Settings privilege.

CVE-2026-20978 [MEDIUM] CVE-2026-20978: Improper authorization in KnoxGuardManager prior to SMR Feb-2026 Release 1 allows local attackers to Improper authorization in KnoxGuardManager prior to SMR Feb-2026 Release 1 allows local attackers to bypass the persistence configuration of the application.

CVE-2026-20981 [MEDIUM] CVE-2026-20981: Improper input validation in FacAtFunction prior to SMR Feb-2026 Release 1 allows privileged physica Improper input validation in FacAtFunction prior to SMR Feb-2026 Release 1 allows privileged physical attacker to execute arbitrary command with system privilege.

CVE-2026-20982 [MEDIUM] CWE-22 CVE-2026-20982: Path traversal in ShortcutService prior to SMR Feb-2026 Release 1 allows privileged local attacker t Path traversal in ShortcutService prior to SMR Feb-2026 Release 1 allows privileged local attacker to create file with system privilege.

CVE-2026-20977 [MEDIUM] CVE-2026-20977: Improper access control in Emergency Sharing prior to SMR Feb-2026 Release 1 allows local attackers Improper access control in Emergency Sharing prior to SMR Feb-2026 Release 1 allows local attackers to interrupt its functioning.

CVE-2026-20973 [MEDIUM] CWE-125 CVE-2026-20973: Out-of-bounds read in libimagecodec.quram.so prior to SMR Jan-2026 Release 1 allows remote attacker Out-of-bounds read in libimagecodec.quram.so prior to SMR Jan-2026 Release 1 allows remote attacker to access out-of-bounds memory.

CVE-2026-20971 [HIGH] CWE-416 CVE-2026-20971: Use After Free in PROCA driver prior to SMR Jan-2026 Release 1 allows local attackers to potentially Use After Free in PROCA driver prior to SMR Jan-2026 Release 1 allows local attackers to potentially execute arbitrary code.