Vulnerability in Samsung Mobile Devices
CVE-2026-21019
Improper input validation in FacAtFunction in Galaxy Watch prior to SMR May-2026 Release 1 allows local attacker to execute arbitrary code with system privilege.
EPSS: 0.000 (11.9th percentile) — read the EPSS interpretation.
Affected products
- Samsung Mobile Devices — versions SMR May-2026 Release in Android Watch 14, 16