Samsung: >> Members >> 2.4.85.11 Security Vulnerabilities
Path traversal vulnerability in Samsung Members prior to version 5.0.00.11 allows attackers to read and write arbitrary file with the privilege of Samsung Members.
CVSS Score
5.1
EPSS Score
0.001
Published
2025-05-07
Improper input validation in Samsung Members prior to version 5.2.00.12 allows physical attackers to access data across multiple user profiles.
CVSS Score
4.6
EPSS Score
0.0
Published
2025-02-04
Improper URL validation vulnerability in Samsung Members prior to version 14.0.07.1 allows attackers to access sensitive information.
CVSS Score
3.3
EPSS Score
0.002
Published
2023-08-10
Unprotected dynamic receiver in Samsung Members prior to version 4.2.005 allows attacker to launch arbitrary activity.
CVSS Score
4.0
EPSS Score
0.001
Published
2022-06-07
Improper access control vulnerability in Samsung Members prior to version 13.6.08.5 allows local attacker to execute call function without CALL_PHONE permission.
CVSS Score
4.3
EPSS Score
0.001
Published
2022-04-11
Calling of non-existent provider in SMP sdk prior to version 3.0.9 allows unauthorized actions including denial of service attack by hijacking the provider.
CVSS Score
4.0
EPSS Score
0.001
Published
2021-03-04
Calling of non-existent provider in Samsung Members prior to version 2.4.81.13 (in Android O(8.1) and below) and 3.8.00.13 (in Android P(9.0) and above) allows unauthorized actions including denial of service attack by hijacking the provider.
CVSS Score
4.0
EPSS Score
0.001
Published
2021-03-04