Improper Export of Android Application Components in InputSharing by Samsung
CVE-2026-21054

6.9MEDIUM

Key Information:

Vendor

Samsung

Vendor
CVE Published:
10 July 2026

What is CVE-2026-21054?

The vulnerability in Samsung's InputSharing, specifically prior to version 2.7.01.4, stems from improper export settings of Android application components. This security flaw potentially allows local attackers to exploit the application, gaining unauthorized access to data that is intended for sharing. Users are recommended to update to the latest version to mitigate this risk and enhance their security posture.

Affected Version(s)

InputSharing 2.7.01.4

References

CVSS V4

Score:
6.9
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.