CVE-2025-21079Samsung Members vulnerability

3 documents3 sources
Severity
8.1HIGHNVD
CNA7.1
EPSS
0.0%
top 85.51%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Samsung Members
Timeline
PublishedNov 5

Description

Improper input validation in Samsung Members prior to version 5.5.01.3 allows remote attackers to connect arbitrary URL and launch arbitrary activity with Samsung Members privilege. User interaction is required for triggering this vulnerability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:NExploitability: 2.8 | Impact: 5.2

Affected Packages1 packages

NVDsamsung/members< 5.5.01.3

🔴Vulnerability Details

2
GHSA
GHSA-vrx8-mx5x-r6qv: Improper input validation in Samsung Members prior to version 52025-11-05
CVEList
CVE-2025-21079: Improper input validation in Samsung Members prior to version 52025-11-05
CVE-2025-21079 — Samsung Members vulnerability | cvebase