Out-of-Bounds Write Vulnerability in libsavsac.so Affects Samsung Products
CVE-2026-21042

8.4HIGH

Key Information:

Vendor

Samsung

Vendor
CVE Published:
10 July 2026

What is CVE-2026-21042?

An out-of-bounds write vulnerability has been identified in the libsavsac.so library prior to the SMR Jul-2026 Release 1. This weakness allows local attackers to leverage the flaw to execute arbitrary code on affected systems. To mitigate the risk, users are advised to upgrade to the latest version provided by Samsung.

Affected Version(s)

Samsung Mobile Devices SMR Jul-2026 Release in Android 14, 15, 16

References

CVSS V4

Score:
8.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.