—

CVE-2026-21003PATCHED

samsung mobile · samsung mobile devices

CVE-2026-21003: Improper input validation in data related to network restrictions prior to SMR Apr-2026 Release 1 allows physical attack

Description

Improper input validation in data related to network restrictions prior to SMR Apr-2026 Release 1 allows physical attackers to bypass the restrictions.

Affected Products

Vendor	Product	Versions
samsung mobile	samsung mobile devices	—

References

https://security.samsungmobile.com/securityUpdate.smsb?year=2026&month=04

Related News (1 articles)

Tier C

VulDB5h ago

CVE-2026-21003 | Samsung Devices access control

→ No new info (linked only)

CISA KEV❌ No

Actively exploited❌ No

Patch available

SMR Apr-2026 Release in Selected Android 141516 devices

PublishedApr 13, 2026

Last enriched5h agov2

Trending Score30

Source articles1

Independent1

Info Completeness6/14

Missing: versions, cvss, epss, cwe, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

MEDIUMCVE-2026-21010

CVE-2026-21010: Improper input validation in Retail Mode prior to SMR Apr-2026 Release 1 allows local attackers to trigger privileged fu

Trending: 23

NONECVE-2026-21014

CVE-2026-21014: Improper access control in Samsung Camera prior to version 16.5.00.28 allows local attacker to access location data. Use

Trending: 20

NONECVE-2026-21012

CVE-2026-21012: External control of file name in AODManager prior to SMR Apr-2026 Release 1 allows privileged local attacker to create f

Trending: 20

NONECVE-2026-21009

CVE-2026-21009: Improper check for exceptional conditions in Recents prior to SMR Apr-2026 Release 1 allows physical attacker to bypass

Trending: 20

NONECVE-2026-21007

CVE-2026-21007: Improper check for exceptional conditions in Device Care prior to SMR Apr-2026 Release 1 allows physical attackers to by

Trending: 20

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 13, 2026

Discovered by ZDM

Apr 13, 2026

Patch Available

Apr 13, 2026

Updated: severity

Apr 13, 2026

Version History

Last enriched 5h ago

v2Tier C5h ago

Updated severity to CRITICAL and corrected exploit availability to false.

severity

via VulDB

v15h ago

Initial creation