Vulnerability Details CVE-2026-21037
Improper input validation in Samsung Members prior to version 5.8.01.5 allows local attackers to access arbitrary URL and launch arbitrary activity with Samsung Members privilege.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 1.4%
CVSS Severity
CVSS v3 Score 7.1
Products affected by CVE-2026-21037
-
cpe:2.3:a:samsung:members:-
-
cpe:2.3:a:samsung:members:2.4.81.13
-
cpe:2.3:a:samsung:members:2.4.85.11
-
cpe:2.3:a:samsung:members:3.8.00.13
-
cpe:2.3:a:samsung:members:3.9.10.11
-
cpe:2.3:a:samsung:members:4.2.005
-
cpe:2.3:a:samsung:members:5.0.00.11
-
cpe:2.3:a:samsung:members:5.2.00.12