Shodan
Vulnerabilities
Vulnerable Software
Samsung:  >> Android  >> 16.0  Security Vulnerabilities
CVE-2026-21023
Insufficient verification of data authenticity in PackageManagerService prior to SMR Mar-2026 Release 1 allows local attackers to modify the installation restriction of specific application.
CVSS Score
6.9
EPSS Score
0.0
Published
2026-04-29
CVE-2026-21007
Improper check for exceptional conditions in Device Care prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Knox Guard.
CVSS Score
4.4
EPSS Score
0.0
Published
2026-04-13
CVE-2026-21008
Exposure of sensitive information in S Share prior to SMR Apr-2026 Release 1 allows adjacent attacker to access sensitive information.
CVSS Score
5.1
EPSS Score
0.0
Published
2026-04-13
CVE-2026-21009
Improper check for exceptional conditions in Recents prior to SMR Apr-2026 Release 1 allows physical attacker to bypass App Pinning.
CVSS Score
4.1
EPSS Score
0.0
Published
2026-04-13
CVE-2026-21010
Improper input validation in Retail Mode prior to SMR Apr-2026 Release 1 allows local attackers to trigger privileged functions.
CVSS Score
6.6
EPSS Score
0.0
Published
2026-04-13
CVE-2026-21011
Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Extend Unlock.
CVSS Score
5.4
EPSS Score
0.0
Published
2026-04-13
CVE-2026-21012
External control of file name in AODManager prior to SMR Apr-2026 Release 1 allows privileged local attacker to create file with system privilege.
CVSS Score
6.8
EPSS Score
0.0
Published
2026-04-13
CVE-2026-21003
Improper input validation in data related to network restrictions prior to SMR Apr-2026 Release 1 allows physical attackers to bypass the restrictions.
CVSS Score
5.2
EPSS Score
0.0
Published
2026-04-13
CVE-2026-20992
Improper authorization in Settings prior to SMR Mar-2026 Release 1 allows local attacker to disable configuring the background data usage of application.
CVSS Score
4.8
EPSS Score
0.0
Published
2026-03-16
CVE-2026-20988
Improper verification of intent by broadcast receiver in Settings prior to SMR Mar-2026 Release 1 allows local attacker to launch arbitrary activity with Settings privilege. User interaction is required for triggering this vulnerability.
CVSS Score
6.8
EPSS Score
0.0
Published
2026-03-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved