Improper Export Vulnerability in Samsung Assistant Software
CVE-2026-21033

6.9MEDIUM

Key Information:

Vendor

Samsung

Vendor
CVE Published:
5 June 2026

What is CVE-2026-21033?

An improper export vulnerability exists in the ExpressHomeWidgetReceiver of Samsung Assistant software prior to version 9.3.14. This flaw allows a local attacker to exploit the system and execute arbitrary scripts, potentially compromising user security. It is crucial for users to update to the latest version to mitigate this risk and enhance their device's security.

Affected Version(s)

Samsung Assistant 9.3.14

References

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.