CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-20988

Improper verification of intent by broadcast receiver in Settings prior to SMR Mar-2026 Release 1 allows local attacker to launch arbitrary activity with Settings privilege. User interaction is required for triggering this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.0%

CVSS Severity

CVSS v3 Score 5.0

References

https://security.samsungmobile.com/securityUpdate.smsb?year=2026&month=03

Products affected by CVE-2026-20988

Samsung » Android » Version: 16.0

cpe:2.3:o:samsung:android:16.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-20988

Products

Pricing

Contact Us