CVE-2026-21034

Summary

Improper export of android application components in Samsung Auto prior to version 3.1.2.61 in Android 15 and 3.2.0.38 in Android 16 allows local attacker to change audio configuration.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Auto3.1.2.61 in Android 15 and 3.2.0.38 in Android 16 < *unaffected

Weaknesses

  • CWE-926: Improper Export of Android Application Components

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References