Description
Improper input validation in GalaxyDiagnostics prior to version 3.5.050 allows local privileged attackers to execute privileged commands.
Published: 2026-02-04
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: Local Privileged Command Execution
Action: Patch
AI Analysis

Impact

GalaxyDiagnostics for Samsung Mobile devices contains an improper input validation flaw that permits a local attacker with sufficient privileges to provide crafted data and trigger the execution of any privileged command. The flaw is present in all releases before version 3.5.050. This flaw could allow the attacker to take full control of the device or execute commands that affect system integrity.

Affected Systems

The affected product is Samsung Mobile’s GalaxyDiagnostics application; all versions released prior to 3.5.050 are vulnerable. Users running those versions on Samsung Galaxy phones remain at risk until the software is updated or removed.

Risk and Exploitability

The CVSS score of 8.7 indicates high severity, while the EPSS score of less than 1 % suggests a very low probability of exploitation in the wild at this time. Because the vulnerability requires local privileged access, the attack surface is limited to devices already in the control of a privileged user or compromised by other means. The flaw is not listed in the CISA KEV catalog, implying no publicly known exploits yet. The likely attack vector is local privileged access.

Generated by OpenCVE AI on April 18, 2026 at 14:04 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade GalaxyDiagnostics to version 3.5.050 or later.
  • If a patch is not immediately available, disable or uninstall the GalaxyDiagnostics app to eliminate the vulnerable functionality.
  • Enforce device‑level security policies that restrict local privileged access only to trusted applications and users.

Generated by OpenCVE AI on April 18, 2026 at 14:04 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sat, 18 Apr 2026 14:30:00 +0000

Type Values Removed Values Added
Title Local Privileged Command Execution via Improper Input Validation in Samsung GalaxyDiagnostics
Weaknesses CWE-20
CWE-78

Wed, 04 Feb 2026 21:30:00 +0000

Type Values Removed Values Added
First Time appeared Samsung Mobile
Samsung Mobile galaxydiagnostics
Vendors & Products Samsung Mobile
Samsung Mobile galaxydiagnostics

Wed, 04 Feb 2026 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 04 Feb 2026 06:45:00 +0000

Type Values Removed Values Added
Description Improper input validation in GalaxyDiagnostics prior to version 3.5.050 allows local privileged attackers to execute privileged commands.
References
Metrics cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H'}

Subscriptions

Samsung Mobile Galaxydiagnostics
cve-icon MITRE

Status: PUBLISHED

Assigner: SamsungMobile

Published:

Updated: 2026-02-04T16:58:49.035Z

Reserved: 2025-12-11T01:33:35.800Z

Link: CVE-2026-20987

cve-icon Vulnrichment

Updated: 2026-02-04T16:58:46.311Z

cve-icon NVD

Status : Deferred

Published: 2026-02-04T07:16:00.900

Modified: 2026-04-15T00:35:42.020

Link: CVE-2026-20987

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-18T14:15:04Z

Weaknesses