Primary

Context

Samsung Mobile SecSettings Improper Input Validation Vulnerability Allowing Privileged File Access

Vulnerability

Patched

A vulnerability exists in the SecSettings component of Samsung Mobile devices running selected versions of Android 13, 14, 15, and 16, prior to the January 2026 Security Maintenance Release. This vulnerability stems from improper input validation, which allows local attackers to access files with system privileges. Exploitation of this issue requires user interaction.

Impact

Exploitation of this vulnerability could lead to unauthorized access to files with system privileges, potentially allowing for further exploitation or manipulation of the device's operating system or applications.

Remediation

Users can update to the January 2026 Security Maintenance Release to address this vulnerability. This update is part of the regular security update process for Samsung Mobile devices.

Added: Jan 9, 2026, 7:21 AM

Updated: Jan 9, 2026, 7:21 AM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

7.5

exploitability

3.0

remediation

7.7

relevance

2.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

7.5

exploitability

3.0

remediation

7.7

relevance

2.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung Mobile SecSettings Improper Input Validation Vulnerability Allowing Privileged File Access

Vulnerability

Impact

Remediation

Affected Products

Samsung Android

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating