The vulnerability originates from improper input validation in Samsung Mobile’s Retail Mode. Because the input checks are insufficient, a local attacker—one who has physical or close‑proximity access to the device—can enter crafted data that causes the firmware to execute privileged functions normally protected. This flaw permits the attacker to modify device settings or run commands with elevated permissions, compromising confidentiality, integrity, or availability of the device.

Samsung Mobile Devices that have Retail Mode enabled and are running firmware versions preceding the April 2026 SMR Release 1 are affected. No specific models are listed, so any device that has not installed the latest security update remains at risk.

The reported CVSS score of 6.6 indicates medium severity. EPSS data is not available and the vulnerability is not listed in the CISA KEV catalog, suggesting limited or undocumented exploitation. The attack requires local or close‑proximity access to the device, but the medium severity still represents a significant risk for users who remain on older firmware versions.