CVE-2025-21079
- EPSS 0.07%
- Veröffentlicht 05.11.2025 05:41:01
- Zuletzt bearbeitet 07.11.2025 15:46:21
Improper input validation in Samsung Members prior to version 5.5.01.3 allows remote attackers to connect arbitrary URL and launch arbitrary activity with Samsung Members privilege. User interaction is required for triggering this vulnerability.
CVE-2025-20949
- EPSS 0.09%
- Veröffentlicht 07.05.2025 08:24:02
- Zuletzt bearbeitet 17.07.2025 00:42:54
Path traversal vulnerability in Samsung Members prior to version 5.0.00.11 allows attackers to read and write arbitrary file with the privilege of Samsung Members.
CVE-2025-20898
- EPSS 0.06%
- Veröffentlicht 04.02.2025 08:15:31
- Zuletzt bearbeitet 17.07.2025 01:12:41
Improper input validation in Samsung Members prior to version 5.2.00.12 allows physical attackers to access data across multiple user profiles.
CVE-2022-36877
- EPSS 0.06%
- Veröffentlicht 09.09.2022 15:15:13
- Zuletzt bearbeitet 21.11.2024 07:13:57
Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions 4.3.00.11 in Global and 14.0.02.4 in China allows local attackers to access device identification via log.
CVE-2021-25432
- EPSS 0.07%
- Veröffentlicht 08.07.2021 14:15:08
- Zuletzt bearbeitet 21.11.2024 05:54:58
Information exposure vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8.1) and below, and 3.9.10.11 in Android P(9.0) and above allows untrusted applications to access chat data.
CVE-2018-11614
- EPSS 0.5%
- Veröffentlicht 24.09.2018 23:29:01
- Zuletzt bearbeitet 21.11.2024 03:43:41
This vulnerability allows remote attackers to escalate privileges on vulnerable installations of Samsung Members Fixed in version 2.4.25. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploi...