Primary

Context

Samsung Members Improper Input Validation Vulnerability Allowing Cross-Profile Data Access

Vulnerability

Patched

A vulnerability exists in Samsung Members prior to version 5.2.00.12, where improper input validation allows physical attackers to access data across multiple user profiles. This issue arises from inadequate validation of user input, enabling unauthorized data access.

Impact

Exploitation of this vulnerability could lead to unauthorized access to personal data across different user profiles on the device.

Remediation

Users can update to Samsung Members version 5.2.00.12 or later to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung Members Improper Input Validation Vulnerability Allowing Cross-Profile Data Access

Vulnerability

Impact

Remediation

Affected Products

Samsung Members

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating