Samsung CVEs & Vulnerabilities

58 CVEs affecting Samsung products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

android 71exynos 1380 firmware 15exynos 1480 15exynos 1380 15exynos 1480 firmware 15exynos 1580 14exynos 1280 14exynos 1280 firmware 14
CVE-2026-28573MEDIUM

In AndroidManifest.xml, there is a possible persistent denial of service due to a missing permission check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

18 Jun 2026
5.5
CVSS
CVE-2026-21033HIGH

Improper export of android application components in ExpressHomeWidgetReceiver of Samsung Assistant prior to version 9.3.14 allows local attacker to execute arbitrary script.

5 Jun 2026
7.1
CVSS
CVE-2026-21032HIGH

Improper export of android application components in SmartHomeWidgetReceiver of Samsung Assistant prior to version 9.3.14 allows local attacker to execute arbitrary script.

5 Jun 2026
7.1
CVSS
CVE-2026-21031HIGH

Improper authorization in AppBlock prior to SMR Jun-2026 Release 1 allows local attacker to launch arbitrary activity. User interaction is required for triggering this vulnerability.

5 Jun 2026
7.8
CVSS
CVE-2026-21030HIGH

Improper access control in MediaTek Audio HAL prior to SMR Jun-2026 Release 1 allows local attackers to trigger privileged functions.

5 Jun 2026
7.8
CVSS
CVE-2026-21029HIGH

Improper export of android application components in Galaxy Editing Service prior to SMR Jun-2026 Release 1 allows local attacker to execute privileged operations.

5 Jun 2026
7.8
CVSS
CVE-2026-21028MEDIUM

Improper access control in AuditLogService prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information.

5 Jun 2026
5.5
CVSS
CVE-2026-21027LOW

Improper export of android application components in ImsSettings prior to SMR Jun-2026 Release 1 allows local attackers to trigger logging function.

5 Jun 2026
3.3
CVSS
CVE-2026-21026MEDIUM

Improper export of android application components in SpriteWallpaper prior to SMR Jun-2026 Release 1 allows local attackers to access to sensitive information.

5 Jun 2026
5.5
CVSS
CVE-2026-21025MEDIUM

Incorrect privilege assignment in Telephony prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information.

5 Jun 2026
5.5
CVSS
CVE-2026-21017MEDIUM

Improper handling of insufficient privileges in SecTelephonyProvider prior to SMR Jun-2026 Release 1 allows local attackers to access privileged files.

5 Jun 2026
5.5
CVSS
CVE-2026-8915HIGH

Out-of-bounds write vulnerability in Samsung Open Source Escargot allows Overflow Buffers. This issue affects Escargot: 36f5fb58366a67b713c02f6fd985e924fcc09e31.

28 May 2026
8.8
CVSS
CVE-2026-21022MEDIUM

Improper handling of insufficient permissions in Routines prior to SMR May-2026 Release 1 allows local attackers to access sensitive information.

13 May 2026
5.5
CVSS
CVE-2026-21021MEDIUM

Improper input validation in Routines prior to SMR May-2026 Release 1 allows physical attackers to launch privileged activity.

13 May 2026
6.8
CVSS
CVE-2026-21020HIGH

Improper export of android application components in OmaCP prior to SMR May-2026 Release 1 allows local attackers to trigger privileged functions.

13 May 2026
7.8
CVSS
CVE-2026-21018MEDIUM

Out-of-bounds write in SveService prior to SMR May-2026 Release 1 allows local privileged attackers to execute arbitrary code.

13 May 2026
6.7
CVSS
CVE-2026-21016MEDIUM

Incorrect privilege assignment in LocationManager prior to SMR May-2026 Release 1 allows local attackers to access sensitive information.

13 May 2026
5.5
CVSS
CVE-2026-21015MEDIUM

Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier.

13 May 2026
5.5
CVSS
CVE-2026-21023MEDIUM

Insufficient verification of data authenticity in PackageManagerService prior to SMR Mar-2026 Release 1 allows local attackers to modify the installation restriction of specific application.

29 Apr 2026
5.5
CVSS
CVE-2026-6839MEDIUM

Improper validation of STRING tensor offsets could allows malformed string metadata to trigger out of bounds access during constant tensor import in Samsung Open Source ONE Affected version is prior to commit 1.30.0.

22 Apr 2026
6.6
CVSS
CVE-2026-41667MEDIUM

Integer overflow in constant tensor data size calculation in Samsung Open Source ONE could cause incorrect buffer sizing for large constant nodes. Affected version is prior to commit 1.30.0.

22 Apr 2026
6.6
CVSS
CVE-2026-41666MEDIUM

Integer overflow in tensor copy size calculation in Samsung Open Source ONE could lead to out of bounds access during loop state propagation. Affected version is prior to commit 1.30.0.

22 Apr 2026
6.6
CVSS
CVE-2026-41665MEDIUM

Integer overflow in scratch buffer initialization size calculation in Samsung Open Source ONE cause incorrect memory initialization for large intermediate tensors. Affected version is prior to commit 1.30.0.

22 Apr 2026
6.1
CVSS
CVE-2026-41664MEDIUM

Integer overflow in memory copy size calculation in Samsung Open Source ONE could lead to invalid memory operations with large tensor shapes. Affected version is prior to commit 1.30.0.

22 Apr 2026
6.6
CVSS
CVE-2026-40450MEDIUM

Integer overflow in output tensor copy size calculation in Samsung Open Source ONE could cause incorrect copy length and memory corruption for oversized tensors. Affected version is prior to commit 1.30.0.

22 Apr 2026
6.6
CVSS
CVE-2026-40449MEDIUM

Integer overflow in buffer size calculation could result in out of bounds memory access when handling large tensors in Samsung Open Source ONE. Affected version is prior to commit 1.30.0.

22 Apr 2026
6.6
CVSS
CVE-2026-40448MEDIUM

Potential Integer overflow in tensor allocation size calculation could lead to insufficient memory allocation for large tensors in Samsung Open Source ONE. Affected version is prior to commit  1.30.0.

22 Apr 2026
5.3
CVSS
CVE-2026-21014LOW

Improper access control in Samsung Camera prior to version 16.5.00.28 allows local attacker to access location data. User interaction is required for triggering this vulnerability.

13 Apr 2026
2.8
CVSS
CVE-2026-21013MEDIUM

Incorrect default permission in Galaxy Wearable prior to version 2.2.68.26 allows local attackers to access sensitive information.

13 Apr 2026
5.5
CVSS
CVE-2026-21012LOW

External control of file name in AODManager prior to SMR Apr-2026 Release 1 allows privileged local attacker to create file with system privilege.

13 Apr 2026
3.3
CVSS
CVE-2026-21011MEDIUM

Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Extend Unlock.

13 Apr 2026
6.8
CVSS
CVE-2026-21010HIGH

Improper input validation in Retail Mode prior to SMR Apr-2026 Release 1 allows local attackers to trigger privileged functions.

13 Apr 2026
7.8
CVSS
CVE-2026-21009MEDIUM

Improper check for exceptional conditions in Recents prior to SMR Apr-2026 Release 1 allows physical attacker to bypass App Pinning.

13 Apr 2026
6.8
CVSS
CVE-2026-21008MEDIUM

Exposure of sensitive information in S Share prior to SMR Apr-2026 Release 1 allows adjacent attacker to access sensitive information.

13 Apr 2026
6.5
CVSS
CVE-2026-21007MEDIUM

Improper check for exceptional conditions in Device Care prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Knox Guard.

13 Apr 2026
6.8
CVSS
CVE-2026-21006LOW

Improper access control in Samsung DeX prior to SMR Apr-2026 Release 1 allows physical attackers to access to hidden notification contents.

13 Apr 2026
2.4
CVSS
CVE-2026-21003MEDIUM

Improper input validation in data related to network restrictions prior to SMR Apr-2026 Release 1 allows physical attackers to bypass the restrictions.

13 Apr 2026
6.8
CVSS
CVE-2025-52908CRITICAL

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000. Incorrect Handling of the NL80211 vendor command leads to a buffer overflow via a certain ioctl message, issue 1 of 2.

7 Apr 2026
9.8
CVSS
CVE-2025-62818CRITICAL

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. An out-of-bounds write occurs due to a mismatch between the TP-UDHI and UDL values when processing an SMS TP-UD packet.

7 Apr 2026
9.8
CVSS
CVE-2025-52909CRITICAL

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000. Incorrect Handling of the NL80211 vendor command leads to a buffer overflow via a certain ioctl message, issue 2 of 2.

7 Apr 2026
9.8
CVSS
CVE-2025-54601HIGH

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor amd Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000. Improper synchronization on a global variable leads to a double free. An attacker can trigger a race condition by invoking an ioctl function concurrently from multiple threads.

7 Apr 2026
7.0
CVSS
CVE-2025-57834HIGH

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem (Exynos 980, 850, 990, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 1680, 9110, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400, and Modem 5410). The absence of proper input validation leads to a Denial of Service.

6 Apr 2026
7.5
CVSS
CVE-2025-54602HIGH

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000. Improper synchronization on a global variable leads to a use-after-free. An attacker can trigger a race condition by invoking an ioctl function concurrently from multiple threads.

6 Apr 2026
7.0
CVSS
CVE-2025-54328CRITICAL

An issue was discovered in SMS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. A Stack-based Buffer Overflow occurs while parsing SMS RP-DATA messages.

6 Apr 2026
10.0
CVSS
CVE-2025-58349CRITICAL

An issue was discovered in L2 in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Incorrect handling of LTE MAC packets containing many MAC Control Elements (CEs) leads to baseband crashes.

6 Apr 2026
9.1
CVSS
CVE-2025-54324HIGH

An issue was discovered in NAS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Incorrect Handling of a DL NAS Transport packet leads to a Denial of Service.

6 Apr 2026
7.5
CVSS
CVE-2025-59440HIGH

An issue was discovered in USIM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Improper handling of SIM card proactive commands leads to a Denial of Service.

6 Apr 2026
7.5
CVSS
CVE-2025-57835HIGH

An issue was discovered in RRC in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Improper memory initialization results in an illegal memory access, causing a system crash via a malformed RRCReconfiguration message.

6 Apr 2026
7.5
CVSS
← PrevPage 1 / 2Next →