PT-2026-25593 · Samsung · Samsung Mobile Devices
Published
2026-03-16
·
Updated
2026-03-16
·
CVE-2026-20988
CVSS v4.0
6.8
| Vector | AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N |
Improper verification of intent by broadcast receiver in Settings prior to SMR Mar-2026 Release 1 allows local attacker to launch arbitrary activity with Settings privilege. User interaction is required for triggering this vulnerability.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Samsung Mobile Devices