PatchSiren cyber security CVE debrief
CVE-2026-21035 Samsung Mobile CVE debrief
A medium severity vulnerability, CVE-2026-21035, was found in Samsung Plus TV prior to version 1.0.28.6. The vulnerability is caused by improper input validation, which allows remote attackers to access sensitive information. The CVSS score for this vulnerability is 6.5.
- Vendor
- Samsung Mobile
- Product
- Samsung Plus TV
- CVSS
- MEDIUM 6.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-05
- Original CVE updated
- 2026-06-05
- Advisory published
- 2026-06-05
- Advisory updated
- 2026-06-05
Who should care
Users of Samsung Plus TV prior to version 1.0.28.6 should update to the latest version to mitigate this vulnerability.
Technical summary
The vulnerability is caused by improper input validation in Samsung Plus TV prior to version 1.0.28.6. This allows remote attackers to access sensitive information.
Defensive priority
medium
Recommended defensive actions
- Update Samsung Plus TV to version 1.0.28.6 or later.
- Refer to [ref-4](https://security.samsungmobile.com/serviceWeb.smsb?year=2026&month=06) for official security bulletin.
Evidence notes
The CVE was published on [cve-org](https://www.cve.org/CVERecord?id=CVE-2026-21035) and detailed information can be found on [nvd](https://nvd.nist.gov/vuln/detail/CVE-2026-21035).
Official resources
-
CVE-2026-21035 CVE record
CVE.org
-
CVE-2026-21035 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-21035 was published on 2026-06-05T11:16:36.167Z and modified on 2026-06-05T14:59:51.620Z.