Exposed ExpressHomeWidgetReceiver Enables Local Exec in Samsung Assistant <9.3.14
CVE-2026-21033 Published on June 5, 2026

Improper export of android application components in ExpressHomeWidgetReceiver of Samsung Assistant prior to version 9.3.14 allows local attacker to execute arbitrary script.

NVD


Affected Versions

Samsung Mobile Samsung Assistant:

Exploit Probability

EPSS
0.09%
Percentile
0.73%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.