Samsung SecSettings Local Priv Escalation via Input Validation
CVE-2026-20969 Published on January 9, 2026

Improper input validation in SecSettings prior to SMR Jan-2026 Release 1 allows local attacker to access file with system privilege. User interaction is required for triggering this vulnerability.

NVD

Products Associated with CVE-2026-20969

Want to know whenever a new CVE is published for Samsung Mobile Devices? stack.watch will email you.

Samsung Mobile Devices

Affected Versions

Samsung Mobile Devices Version SMR Jan-2026 Release in Selected Android 13, 14, 15, 16 devices is unaffected by CVE-2026-20969

Exploit Probability

EPSS

0.02%

Percentile

5.65%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Samsung SecSettings Local Priv Escalation via Input ValidationCVE-2026-20969 Published on January 9, 2026

Products Associated with CVE-2026-20969

Affected Versions

Exploit Probability

Samsung SecSettings Local Priv Escalation via Input Validation
CVE-2026-20969 Published on January 9, 2026