Primary

Context

Samsung UwbTest Improper Component Export Vulnerability Allowing UWB Activation

Vulnerability

A vulnerability exists in the UwbTest application on Samsung devices running Android versions 13, 14, 15, and 16, prior to the January 2026 Security Maintenance Release. This vulnerability allows local attackers to enable Ultra Wideband (UWB) functionality by improperly exporting Android application components. The issue arises from inadequate validation of application component permissions, which could be exploited to manipulate UWB features.

Impact

Exploitation of this vulnerability could lead to unauthorized activation of UWB functionality, potentially allowing for misuse of UWB capabilities such as precise location tracking or interaction with UWB-enabled devices.

Remediation

Users can update to the January 2026 Security Maintenance Release to address this vulnerability. This update includes the necessary permission adjustments to mitigate the issue.

Added: Jan 9, 2026, 7:19 AM

Updated: Jan 9, 2026, 7:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

1.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

1.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung UwbTest Improper Component Export Vulnerability Allowing UWB Activation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating