CVE-2026-21023

· NIST NVD ↗

Insufficient verification of data authenticity in PackageManagerService prior to SMR Mar-2026 Release 1 allows local attackers to modify the installation restriction of specific application.

MEDIUM
CVSS severity
5.5
CVSS base score
2026-04-29
Published

CWE codes

NVD-CWE-noinfo

Affected products

samsung:android

Sources