Description
Improper access control in AuditLogService prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information.
Published: 2026-06-05
Score: 5.1 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

AuditLogService in Samsung Mobile Devices implements an improper access control mechanism that allows local users to read audit logs that should be protected. The vulnerability enables a local attacker to retrieve confidential audit data without needing elevated privileges, potentially exposing proprietary or personal information stored in the logs.

Affected Systems

Samsung Mobile Devices running Android 16.0 firmware versions prior to the Jun‑2026 SMR Release 1 are affected. All devices with SMR releases up to that point are potentially vulnerable.

Risk and Exploitability

The CVSS score of 5.1 denotes a medium severity issue, and the EPSS score of < 1 % indicates a low probability of exploitation. The flaw is not listed in the CISA KEV catalog, and the attack vector is local; an attacker must already have physical or local access to the device to exploit it. Consequently, the overall risk is moderate, with potential confidentiality loss if sensitive audit information is present.

Generated by OpenCVE AI on June 6, 2026 at 05:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the device to the latest Samsung firmware that includes the fix for the AuditLogService access control flaw.
  • Reduce local user privileges so that users cannot invoke AuditLogService unless necessary.
  • If AuditLogService is not required, disable or remove the service to eliminate the attack surface.
  • Regularly review audit logs to detect any unauthorized access attempts.

Generated by OpenCVE AI on June 6, 2026 at 05:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sat, 06 Jun 2026 04:15:00 +0000

Type Values Removed Values Added
Title Improper Access Control in AuditLogService Exposes Sensitive Information to Local Attackers
Weaknesses CWE-284

Sat, 06 Jun 2026 02:15:00 +0000

Type Values Removed Values Added
First Time appeared Samsung
Samsung android
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:o:samsung:android:16.0:-:*:*:*:*:*:*
cpe:2.3:o:samsung:android:16.0:smr-apr-2026-r1:*:*:*:*:*:*
cpe:2.3:o:samsung:android:16.0:smr-aug-2025-r1:*:*:*:*:*:*
cpe:2.3:o:samsung:android:16.0:smr-dec-2025-r1:*:*:*:*:*:*
cpe:2.3:o:samsung:android:16.0:smr-feb-2026-r1:*:*:*:*:*:*
cpe:2.3:o:samsung:android:16.0:smr-jan-2026-r1:*:*:*:*:*:*
cpe:2.3:o:samsung:android:16.0:smr-mar-2026-r1:*:*:*:*:*:*
cpe:2.3:o:samsung:android:16.0:smr-may-2026-r1:*:*:*:*:*:*
cpe:2.3:o:samsung:android:16.0:smr-nov-2025-r1:*:*:*:*:*:*
cpe:2.3:o:samsung:android:16.0:smr-oct-2025-r1:*:*:*:*:*:*
cpe:2.3:o:samsung:android:16.0:smr-sep-2025-r1:*:*:*:*:*:*
Vendors & Products Samsung
Samsung android
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}

Fri, 05 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 05 Jun 2026 11:45:00 +0000

Type Values Removed Values Added
Title Improper Access Control in AuditLogService Exposes Sensitive Information to Local Attackers
First Time appeared Samsung Mobile
Samsung Mobile samsung Mobile Devices
Weaknesses CWE-284
Vendors & Products Samsung Mobile
Samsung Mobile samsung Mobile Devices

Fri, 05 Jun 2026 10:45:00 +0000

Type Values Removed Values Added
Description Improper access control in AuditLogService prior to SMR Jun-2026 Release 1 allows local attackers to access sensitive information.
References
Metrics cvssV4_0

{'score': 5.1, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Samsung Android
Samsung Mobile Samsung Mobile Devices
cve-icon MITRE

Status: PUBLISHED

Assigner: SamsungMobile

Published:

Updated: 2026-06-05T19:06:23.102Z

Reserved: 2025-12-11T01:33:35.805Z

Link: CVE-2026-21028

cve-icon Vulnrichment

Updated: 2026-06-05T19:06:16.315Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-05T11:16:35.327

Modified: 2026-06-06T02:00:22.073

Link: CVE-2026-21028

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-06T05:30:13Z

Weaknesses