Tron

**Name of the Vulnerable Software and Affected Versions** Samsung Settings versions prior to SMR Mar-2026 Release 1 **Description** An improper authorization issue exists in Samsung Settings prior to SMR Mar-2026 Release 1. This allows a local attacker to disable configuring the background data usage of an application. The issue involves authorization flaws within the Settings application. **Recommendations** Update Samsung Settings to SMR Mar-2026 Release 1 or later.

**Name of the Vulnerable Software and Affected Versions** GameOptimizer versions prior to SMR Feb-2024 Release 1 **Description** The issue is related to improper caller verification in GameOptimizer, allowing local attackers to configure it. This could potentially lead to security bypass on Samsung mobile devices. **Recommendations** For versions prior to SMR Feb-2024 Release 1, update to SMR Feb-2024 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to the GameOptimizer configuration to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** e107 version 0.6 **Description** The issue allows remote attackers to post to non-existent forums by modifying the `forum number` in the `forum post.php` file. **Recommendations** For version 0.6, update to a newer version that fixes this issue, or as a temporary workaround, consider restricting access to the `forum post.php` file to prevent unauthorized posting.