Samsung AODManager LFI: Privileged Local File Creation
CVE-2026-21012 Published on April 13, 2026
External control of file name in AODManager prior to SMR Apr-2026 Release 1 allows privileged local attacker to create file with system privilege.
Products Associated with CVE-2026-21012
Want to know whenever a new CVE is published for Samsung Mobile Devices? stack.watch will email you.
Affected Versions
Samsung Mobile Devices:- Version SMR Apr-2026 Release in Android 14, 15, 16 and below * is unaffected.