Improper input validation in Samsung Members prior to version 5.6.00.11 allows remote attackers to connect arbitrary URL and launch arbitrary activity with Samsung Members privilege. User interaction is required for triggering this vulnerability.
oryginał ENCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XSamsung Members
APPSamsung< 5.6.00.11
Powiązane podatności
Improper input validation in Samsung Members prior to version 5.5.01.3 allows remote attackers to connect arbi...
Improper access control vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8.1) and bel...
An improper authorization vulnerability in Samsung Members "samsungrewards" scheme for deeplink in versions 2....
Improper input validation in Samsung Members prior to version 5.8.01.5 allows local attackers to access arbitr...
Path traversal in Samsung Members prior to Chinese version 15.5.05.4 allows local attackers to overwrite data ...