Total
467 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2026-21015 | 1 Samsung | 1 Android | 2026-05-13 | N/A | 5.5 MEDIUM |
| Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier. | |||||
| CVE-2026-21016 | 1 Samsung | 1 Android | 2026-05-13 | N/A | 5.5 MEDIUM |
| Incorrect privilege assignment in LocationManager prior to SMR May-2026 Release 1 allows local attackers to access sensitive information. | |||||
| CVE-2026-21018 | 1 Samsung | 1 Android | 2026-05-13 | N/A | 6.7 MEDIUM |
| Out-of-bounds write in SveService prior to SMR May-2026 Release 1 allows local privileged attackers to execute arbitrary code. | |||||
| CVE-2026-21020 | 1 Samsung | 1 Android | 2026-05-13 | N/A | 7.8 HIGH |
| Improper export of android application components in OmaCP prior to SMR May-2026 Release 1 allows local attackers to trigger privileged functions. | |||||
| CVE-2026-21021 | 1 Samsung | 1 Android | 2026-05-13 | N/A | 6.8 MEDIUM |
| Improper input validation in Routines prior to SMR May-2026 Release 1 allows physical attackers to launch privileged activity. | |||||
| CVE-2026-21022 | 1 Samsung | 1 Android | 2026-05-13 | N/A | 5.5 MEDIUM |
| Improper handling of insufficient permissions in Routines prior to SMR May-2026 Release 1 allows local attackers to access sensitive information. | |||||
| CVE-2026-21023 | 1 Samsung | 1 Android | 2026-05-01 | N/A | 5.5 MEDIUM |
| Insufficient verification of data authenticity in PackageManagerService prior to SMR Mar-2026 Release 1 allows local attackers to modify the installation restriction of specific application. | |||||
| CVE-2026-21003 | 1 Samsung | 1 Android | 2026-04-16 | N/A | 6.8 MEDIUM |
| Improper input validation in data related to network restrictions prior to SMR Apr-2026 Release 1 allows physical attackers to bypass the restrictions. | |||||
| CVE-2026-21009 | 1 Samsung | 1 Android | 2026-04-15 | N/A | 6.8 MEDIUM |
| Improper check for exceptional conditions in Recents prior to SMR Apr-2026 Release 1 allows physical attacker to bypass App Pinning. | |||||
| CVE-2026-21007 | 1 Samsung | 1 Android | 2026-04-13 | N/A | 6.8 MEDIUM |
| Improper check for exceptional conditions in Device Care prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Knox Guard. | |||||
| CVE-2026-21006 | 1 Samsung | 1 Android | 2026-04-13 | N/A | 2.4 LOW |
| Improper access control in Samsung DeX prior to SMR Apr-2026 Release 1 allows physical attackers to access to hidden notification contents. | |||||
| CVE-2026-21008 | 1 Samsung | 1 Android | 2026-04-13 | N/A | 6.5 MEDIUM |
| Exposure of sensitive information in S Share prior to SMR Apr-2026 Release 1 allows adjacent attacker to access sensitive information. | |||||
| CVE-2026-21012 | 1 Samsung | 1 Android | 2026-04-13 | N/A | 3.3 LOW |
| External control of file name in AODManager prior to SMR Apr-2026 Release 1 allows privileged local attacker to create file with system privilege. | |||||
| CVE-2026-21011 | 1 Samsung | 1 Android | 2026-04-13 | N/A | 6.8 MEDIUM |
| Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Extend Unlock. | |||||
| CVE-2026-21010 | 1 Samsung | 1 Android | 2026-04-13 | N/A | 6.6 MEDIUM |
| Improper input validation in Retail Mode prior to SMR Apr-2026 Release 1 allows local attackers to trigger privileged functions. | |||||
| CVE-2026-20988 | 1 Samsung | 1 Android | 2026-03-20 | N/A | 5.0 MEDIUM |
| Improper verification of intent by broadcast receiver in Settings prior to SMR Mar-2026 Release 1 allows local attacker to launch arbitrary activity with Settings privilege. User interaction is required for triggering this vulnerability. | |||||
| CVE-2026-20989 | 1 Samsung | 1 Android | 2026-03-20 | N/A | 2.4 LOW |
| Improper verification of cryptographic signature in Font Settings prior to SMR Mar-2026 Release 1 allows physical attackers to use custom font. | |||||
| CVE-2026-20990 | 1 Samsung | 1 Android | 2026-03-20 | N/A | 8.1 HIGH |
| Improper export of android application components in Secure Folder prior to SMR Mar-2026 Release 1 allows local attackers to launch arbitrary activity with Secure Folder privilege. | |||||
| CVE-2026-20991 | 1 Samsung | 1 Android | 2026-03-20 | N/A | 4.4 MEDIUM |
| Improper privilege management in ThemeManager prior to SMR Mar-2026 Release 1 allows local privileged attackers to reuse trial contents. | |||||
| CVE-2026-20992 | 1 Samsung | 1 Android | 2026-03-20 | N/A | 3.3 LOW |
| Improper authorization in Settings prior to SMR Mar-2026 Release 1 allows local attacker to disable configuring the background data usage of application. | |||||