Improper privilege management in Samsung System Support Service prior to version 8.0.8.0 allows local attackers to trigger privileged functions.
PUBLISHED5.2
Problem type
- CWE-269: Improper Privilege Management
Affected products
Samsung Mobile
Samsung System Support Service
< * - UNAFFECTED
References
JSON source
https://cveawg.mitre.org/api/cve/CVE-2026-21024Click to expand
{
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"cveMetadata": {
"cveId": "CVE-2026-21024",
"assignerOrgId": "3af57064-a867-422c-b2ad-40307b65c458",
"assignerShortName": "SamsungMobile",
"dateUpdated": "2026-05-13T04:56:26.795Z",
"dateReserved": "2025-12-11T01:33:35.805Z",
"datePublished": "2026-05-13T04:56:26.795Z",
"state": "PUBLISHED"
},
"containers": {
"cna": {
"providerMetadata": {
"orgId": "3af57064-a867-422c-b2ad-40307b65c458",
"shortName": "SamsungMobile",
"dateUpdated": "2026-05-13T04:56:26.795Z"
},
"descriptions": [
{
"lang": "en",
"value": "Improper privilege management in Samsung System Support Service prior to version 8.0.8.0 allows local attackers to trigger privileged functions."
}
],
"affected": [
{
"vendor": "Samsung Mobile",
"product": "Samsung System Support Service",
"defaultStatus": "affected",
"versions": [
{
"version": "8.0.8.0",
"status": "unaffected",
"versionType": "semver",
"lessThan": "*"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"lang": "en",
"description": "CWE-269: Improper Privilege Management"
}
]
}
],
"references": [
{
"url": "https://security.samsungmobile.com/serviceWeb.smsb?year=2026&month=05"
}
],
"metrics": [
{
"format": "CVSS"
}
]
}
}
}