CVE Catalog

CVE-2026-21038

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.11%

2th percentile - higher than 2% of all known CVEs

Summary

Improper input validation in Samsung Android USB Driver for Windows prior to version 1.9.5.0 allows a local attacker to access out-of-bounds memory.

Risk Assessment

The risk involves potential read or write of sensitive memory by a local attacker, which could lead to privilege escalation or information disclosure.

Recommendation

Immediately update the Samsung Android USB Driver to version 1.9.5.0 or later. Also restrict local system access to unauthorized users.

Original NVD description (English source)

Improper input validation in Samsung Android USB Driver for Windows prior to version 1.9.5.0 allows local attacker to access out-of-bounds memory.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS