Description
Improper export of android application components in Samsung Auto prior to version 3.1.2.61 in Android 15 and 3.2.0.38 in Android 16 allows local attacker to change audio configuration.
Published: 2026-06-05
Score: 4.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Samsung Auto components are improperly exported in versions prior to 3.1.2.61 on Android 15 and 3.2.0.38 on Android 16, allowing a local attacker to modify the device’s audio settings. An attacker who can install or manipulate the application locally can change volume levels, mute audio, or alter audio routing, potentially disrupting user experience or enabling further local attacks. The flaw does not provide remote code execution or privilege escalation beyond the device’s user context.

Affected Systems

All Samsung Auto installations running Android 15 with version 3.1.2.61 or earlier, and Android 16 with version 3.2.0.38 or earlier are affected.

Risk and Exploitability

The CVSS score of 4.8 indicates moderate severity, and the EPSS score is unavailable, suggesting limited exploitation data at this time. The vulnerability is not listed in the CISA KEV catalog. Exploitation requires local access to the device or the ability to run unauthorized code within the Samsung Auto application; it is not remotely exploitable under the current description. Attacks are likely to be opportunistic and conducted by users who have physical access or by malicious apps installed through the Play Store or custom firmware.

Generated by OpenCVE AI on June 5, 2026 at 11:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Samsung Auto to version 3.1.2.61 or later on Android 15, and to version 3.2.0.38 or later on Android 16
  • Ensure the device’s operating system is also up to date to reduce the risk of other local attack vectors
  • After the update, verify that the application does not expose unnecessary components by reviewing the Android manifest and restricting permissions as needed

Generated by OpenCVE AI on June 5, 2026 at 11:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sun, 07 Jun 2026 11:30:00 +0000

Type Values Removed Values Added
First Time appeared Samsung Mobile
Samsung Mobile samsung Auto
Vendors & Products Samsung Mobile
Samsung Mobile samsung Auto

Fri, 05 Jun 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 05 Jun 2026 11:45:00 +0000

Type Values Removed Values Added
Title Local Attacker Can Modify Audio Configuration via Improper Component Export in Samsung Auto
Weaknesses CWE-749

Fri, 05 Jun 2026 10:45:00 +0000

Type Values Removed Values Added
Description Improper export of android application components in Samsung Auto prior to version 3.1.2.61 in Android 15 and 3.2.0.38 in Android 16 allows local attacker to change audio configuration.
References
Metrics cvssV4_0

{'score': 4.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Samsung Mobile Samsung Auto
cve-icon MITRE

Status: PUBLISHED

Assigner: SamsungMobile

Published:

Updated: 2026-06-05T19:11:07.395Z

Reserved: 2025-12-11T01:33:35.806Z

Link: CVE-2026-21034

cve-icon Vulnrichment

Updated: 2026-06-05T19:11:00.642Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-05T11:16:36.013

Modified: 2026-06-05T14:59:51.620

Link: CVE-2026-21034

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-07T11:17:21Z

Weaknesses
  • CWE-749

    Exposed Dangerous Method or Function