CVE-2026-21033

HIGH(7.1)

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Risk Signal Score18/100 — NIEDRIG

CVSS 7.1 — Hoch

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

7.1

Technische Schwere

Beschreibung

Improper export of android application components in ExpressHomeWidgetReceiver of Samsung Assistant prior to version 9.3.14 allows local attacker to execute arbitrary script.

Referenzen

https://security.samsungmobile.com/serviceWeb.smsb?year=2026&month=06