CVE-2026-21027
3.3 LOWImproper export of android application components in ImsSettings prior to SMR Jun-2026 Release 1 allows local attackers to trigger loggin...
Published: 2026-06-05 · Last updated: 2026-06-06
Severity and scoring
- CVSS
- 3.3 LOW
- Vector
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Affected products
| Vendor | Product |
|---|---|
| samsung | android |
Description
Improper export of android application components in ImsSettings prior to SMR Jun-2026 Release 1 allows local attackers to trigger logging function.
Source: NVD
References
Related CVEs
Same vendor
- CVE-2026-21031 — Improper authorization in AppBlock prior to SMR Jun-2026 Release 1 allows local attacker to launch arbitrary activity (7.8 HIGH)
- CVE-2026-21030 — Improper access control in MediaTek Audio HAL prior to SMR Jun-2026 Release 1 allows local attackers to trigger privileged functions (7.8 HIGH)
- CVE-2026-21029 — Improper export of android application components in Galaxy Editing Service prior to SMR Jun-2026 Release 1 allows local attacker to exec... (7.8 HIGH)
- CVE-2026-21028 — Improper access control in AuditLogService prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information (5.5 MEDIUM)
- CVE-2026-21026 — Improper export of android application components in SpriteWallpaper prior to SMR Jun-2026 Release 1 allows local attackers to access to ... (5.5 MEDIUM)