CVE-2026-21034

LOW

Samsung Auto < 3.1.2.61 in Android 15 and < 3.2.0.38 in Android 16 - Local Audio Configuration Tampering

Title source: llm
STIX 2.1

Description

Improper export of android application components in Samsung Auto prior to version 3.1.2.61 in Android 15 and 3.2.0.38 in Android 16 allows local attacker to change audio configuration.

Scores

CVSS v3 3.3
EPSS 0.0008
EPSS Percentile 0.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

Status published
Products (2)
samsung/auto < 3.1.2.61
Samsung Mobile/Samsung Auto 3.1.2.61 in Android 15 and 3.2.0.38 in Android 16
Published Jun 05, 2026
Tracked Since Jun 05, 2026