CVE-2025-21079

CVSS v3.1

8.1

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Samsung Members versions prior to 5.5.01.3

Description Improper input validation in Samsung Members allows remote attackers to connect to an arbitrary URL and launch arbitrary activity with Samsung Members privilege. User interaction is required to trigger this issue.

Recommendations Update Samsung Members to version 5.5.01.3 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2025-21079

ZDI-26-209

ZDI-26-210

Affected Products

Samsung Members

CVE-2025-21079

Related Identifiers

Affected Products

References · 13