Use After Free in the PROCA driver is present in firmware versions that precede SMR Jan‑2026 Release 1. A local attacker who can trigger the driver may cause the driver to operate on freed memory, enabling the execution of arbitrary code. This flaw falls under CWE‑416, which can compromise confidentiality, integrity, and availability in the device’s operating system or applications that interact with the driver.

The vulnerability affects Samsung Mobile Devices running Android 13 (13.0) up through Android 16 (16.0) that have not been updated to SMR Jan‑2026 Release 1 or later. The extensive list of CPEs indicates that virtually all Samsung security maintenance releases between January 2022 and October 2025 for Android 13 and 14, as well as the matching releases for Android 15 and 16, are susceptible. Devices on those firmware slices therefore remain at risk.

The CVSS score of 7.3 classifies the flaw as high severity, although an EPSS score below 1 % suggests a low current exploitation likelihood. The vulnerability is not listed in the CISA KEV catalog. Exploitation requires local access, such as installing a malicious application or delivering crafted input to a vulnerable service. If successful, the attacker can execute code with the privileges of the PROCA driver’s process, potentially escalating privileges to system level or beyond.