PatchSiren cyber security CVE debrief
CVE-2026-21037 Samsung Mobile CVE debrief
CVE-2026-21037 is a medium-severity vulnerability in Samsung Members prior to version 5.8.01.5. The vulnerability allows local attackers to access arbitrary URLs and launch arbitrary activities with Samsung Members privileges due to improper input validation.
- Vendor
- Samsung Mobile
- Product
- Samsung Members
- CVSS
- MEDIUM 6.9
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-05
- Original CVE updated
- 2026-06-05
- Advisory published
- 2026-06-05
- Advisory updated
- 2026-06-05
Who should care
Users of Samsung Members prior to version 5.8.01.5
Technical summary
The vulnerability has a CVSS score of 6.9 and is classified as medium severity. It allows local attackers to access arbitrary URLs and launch arbitrary activities with Samsung Members privileges.
Defensive priority
Medium
Recommended defensive actions
- Update Samsung Members to version 5.8.01.5 or later
Evidence notes
The CVE record was obtained from the official CVE website and the NVD detail page.
Official resources
-
CVE-2026-21037 CVE record
CVE.org
-
CVE-2026-21037 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-21037 was published on 2026-06-05T11:16:36.440Z and modified on 2026-06-05T14:59:51.620Z.