Vulnerabilities ›

CVE-2026-21031

High

CWE-863 — Weakness Type

                    Published: Jun 5, 2026                      ·  Modified: Jun 10, 2026                      ·  Source: NVD                

CVSS v3

7.8

🔗 NVD Official

📄 Description (English)

Improper authorization in AppBlock prior to SMR Jun-2026 Release 1 allows local attacker to launch arbitrary activity. User interaction is required for triggering this vulnerability.

🤖 AI Executive Summary

AppBlock versions prior to SMR Jun-2026 Release 1 contain an improper authorization vulnerability (CWE-863) that allows local attackers to launch arbitrary activities with user interaction. The CVSS score of 7.8 indicates high severity with potential for significant system compromise.

📄 Description (Arabic)

تحتوي نسخ AppBlock السابقة للإصدار SMR يونيو 2026 على ثغرة في التفويض غير الصحيح تسمح للمهاجمين المحليين بتنفيذ أنشطة عشوائية. تتطلب الثغرة تفاعل المستخدم لتفعيلها. درجة CVSS 7.8 تشير إلى خطورة عالية مع احتمالية اختراق النظام بشكل كبير.

🤖 ملخص تنفيذي (AI)

AppBlock versions prior to SMR Jun-2026 Release 1 contain an improper authorization vulnerability that allows local attackers to launch arbitrary activities with user interaction. The CVSS score of 7.8 indicates high severity with potential for significant system compromise.

🤖 AI Intelligence Analysis Analyzed: Jun 9, 2026 01:34

🇸🇦 Saudi Arabia Impact Assessment

Saudi Relevance: high

🏢 Affected Saudi Sectors

government telecom banking healthcare

🎯 MITRE ATT&CK Techniques

T1548 T1078 T1548.004

⚖️ Saudi Risk Score (AI)

8.0

/ 10.0

🔧 Remediation Steps (English)

Update AppBlock to SMR Jun-2026 Release 1 or later immediately. Implement principle of least privilege for user accounts. Restrict local access to systems running AppBlock. Monitor for suspicious activity execution patterns. Apply security patches as soon as they become available.

🔧 خطوات المعالجة (العربية)

قم بتحديث AppBlock إلى إصدار SMR يونيو 2026 الإصدار 1 أو أحدث فوراً. طبق مبدأ أقل صلاحية للحسابات. قيد الوصول المحلي للأنظمة التي تشغل AppBlock. راقب أنماط تنفيذ الأنشطة المريبة. طبق التصحيحات الأمنية عند توفرها.

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

5.1.1 5.1.2 5.2.1

🔵 SAMA CSF

AC-2 AC-3 AC-6

🟡 ISO 27001:2022

A.9.1.1 A.9.2.1 A.9.2.5

🔗 References & Sources 1

🔗

https://security.samsungmobile.com/securityUpdate.smsb?year=2026&month=06

mobile.security@samsung.com

Vendor Advisory

📦 Affected Products / CPE 29 entries

samsung:android:15.0

samsung:android:16.0

📊 CVSS Score

7.8

/ 10.0 — High

📊 CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack VectorL — Low / Local

Attack ComplexityL — Low / Local

Privileges RequiredN — None / Network

User InteractionR — Required

ScopeU — Unchanged

ConfidentialityH — High

IntegrityH — High

AvailabilityH — High

📋 Quick Facts

Severity High

CVSS Score7.8

CWECWE-863

EPSS0.01%

Exploit No

Patch ✗ No

Published 2026-06-05

Source Feed nvd

🇸🇦 Saudi Risk Score

8.0

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

CWE-863

🏢 Vendor Advisories

🔗 https://security.samsungmobile.com/securityUpdate.sm...

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

CVE-2026-21031

Introduce Yourself

Sign In Required