PT-2026-6095 · Samsung · Samsung Members
Dimitrios Valsamaras
·
Published
2026-02-04
·
Updated
2026-02-25
·
CVE-2026-20985
CVSS v4.0
7.0
High
| Vector | AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Samsung Members versions prior to 5.6.00.11
Description
Improper input validation in Samsung Members allows remote attackers to connect an arbitrary URL and launch arbitrary activity with Samsung Members privilege. User interaction is required to trigger this issue.
Recommendations
Update Samsung Members to version 5.6.00.11 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Samsung Members