Path Traversal Vulnerability in SemClipboardService by Samsung
CVE-2026-21052

6.8MEDIUM

Key Information:

Vendor

Samsung

Vendor
CVE Published:
10 July 2026

What is CVE-2026-21052?

A path traversal vulnerability exists in Samsung's SemClipboardService, enabling local privileged attackers to exploit the service and gain unauthorized access to sensitive files. This flaw is present in all versions prior to the SMR Jul-2026 Release 1, potentially allowing an attacker to access files with system privileges if they can execute the exploit.

Affected Version(s)

Samsung Mobile Devices SMR Jul-2026 Release in Android 14, 15, 16

References

CVSS V4

Score:
6.8
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.