216.73.216.133

CVE-2026-20985

· Published 04/02/2026 07:16 · Modified 04/02/2026 16:33

Labels: CVE-2026-20985 2026-02-04CVE-2026-20985[email protected]

Essential information

Published
04/02/2026 07:16
Modified
04/02/2026 16:33
Author
Creator
CVSS
7.0 HIGH (v3) 7.0 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Improper input validation in Samsung Members prior to version 5.6.00.11 allows remote attackers to connect arbitrary URL and launch arbitrary activity with Samsung Members privilege. User interaction is required for triggering this vulnerability.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
samsung / members cpe:2.3:a:samsung:members:*:*:*:*:*:*:*:*

References