Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
samsung samsung members vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-25438
Improper access control vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8.1) and below, and 3.9.10.11 in Android P(9.0) and above allows untrusted applications to cause local file inclusion in webview.
Samsung Members
Samsung Members 3.9.10.11
3.3
CVSSv3
CVE-2021-25439
Improper access control vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8.1) and below, and 3.9.10.11 in Android P(9.0) and above allows untrusted applications to cause arbitrary webpage loading in webview.
Samsung Members
Samsung Members 3.9.10.11
8.8
CVSSv3
CVE-2018-11614
This vulnerability allows remote malicious users to escalate privileges on vulnerable installations of Samsung Members Fixed in version 2.4.25. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. Th...
Samsung Samsung Members
3.3
CVSSv3
CVE-2022-36877
Exposure of Sensitive Information in FaqSymptomCardViewModel in Samsung Members prior to versions 4.3.00.11 in Global and 14.0.02.4 in China allows local malicious users to access device identification via log.
Samsung Samsung Members
5.5
CVSSv3
CVE-2022-30748
Unprotected dynamic receiver in Samsung Members prior to version 4.2.005 allows malicious user to launch arbitrary activity.
Samsung Members
3.3
CVSSv3
CVE-2022-28777
Improper access control vulnerability in Samsung Members prior to version 13.6.08.5 allows local malicious user to execute call function without CALL_PHONE permission.
Samsung Members
3.3
CVSSv3
CVE-2021-25343
Calling of non-existent provider in Samsung Members prior to version 2.4.81.13 (in Android O(8.1) and below) and 3.8.00.13 (in Android P(9.0) and above) allows unauthorized actions including denial of service attack by hijacking the provider.
Samsung Members
3.3
CVSSv3
CVE-2021-25342
Calling of non-existent provider in SMP sdk prior to version 3.0.9 allows unauthorized actions including denial of service attack by hijacking the provider.
Samsung Members
4.3
CVSSv3
CVE-2023-30703
Improper URL validation vulnerability in Samsung Members prior to version 14.0.07.1 allows malicious users to access sensitive information.
Samsung Members
7.5
CVSSv3
CVE-2021-25374
An improper authorization vulnerability in Samsung Members "samsungrewards" scheme for deeplink in versions 2.4.83.9 in Android O(8.1) and below, and 3.9.00.9 in Android P(9.0) and above allows remote malicious users to access a user data related with Samsung Account.
Samsung Members
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »