Path Traversal Vulnerability in Samsung Wallpaper Service
CVE-2026-21043

6.7MEDIUM

Key Information:

Vendor

Samsung

Vendor
CVE Published:
10 July 2026

What is CVE-2026-21043?

A path traversal vulnerability exists in the Samsung Wallpaper service prior to the SMR Jul-2026 Release 1. This flaw allows local attackers with privileged access to exploit the system, potentially enabling them to access sensitive files with system server privileges. Due to this vulnerability, unauthorized entities could gain deeper insight into the device's file structure and contents, leading to further security risks.

Affected Version(s)

Samsung Mobile Devices SMR Jul-2026 Release in Android 14, 15, 16

References

CVSS V4

Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.