Description
Path traversal in Samsung Members prior to Chinese version 15.5.05.4 allows local attackers to overwrite data within Samsung Members.
Published: 2026-02-04
Score: 5.1 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Local Data Overwrite
Action: Apply Patch
AI Analysis

Impact

The vulnerability is a path traversal flaw in Samsung Members prior to Chinese version 15.5.05.4. An attacker with local device access can craft a filename that escapes the application’s data directory, allowing the application to overwrite arbitrary files stored within Samsung Members. This compromise can be used to replace configuration, user data, or other files, thereby corrupting the integrity of the application’s data and potentially affecting user experience.

Affected Systems

Samsung Mobile Chinese version customers who use Samsung Members older than 15.5.05.4 are impacted. All builds in the Chinese region before the patch are affected; users of newer builds or other regional releases are not affected.

Risk and Exploitability

The CVSS score of 5.1 marks moderate severity, and the EPSS score is under 1%, indicating a low current likelihood of exploitation. The vulnerability is not present in the CISA KEV catalog. Exploitation requires local code execution; a local attacker must be able to run commands or files with the same privileges as the Samsung Members application. If achieved, the attacker can overwrite files inside the app’s data directory, causing integrity loss. Devices with additional security controls or that have the patched version are inherently protected.

Generated by OpenCVE AI on April 17, 2026 at 23:53 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install Samsung Members Chinese version 15.5.05.4 or newer to apply the path traversal fix.
  • Restrict the device so that non‑system applications do not have write permission to the application’s data directories, reducing the ability of a local attacker to inject malicious file names.
  • Monitor the system for signs of unauthorized file changes in the Samsung Members data folder and review event logs for attempts to exploit path traversal.

Generated by OpenCVE AI on April 17, 2026 at 23:53 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sat, 18 Apr 2026 00:15:00 +0000

Type Values Removed Values Added
Title Local Path Traversal Enabling Data Overwrite in Samsung Members Chinese Version

Wed, 25 Feb 2026 19:00:00 +0000

Type Values Removed Values Added
First Time appeared Samsung members
Weaknesses CWE-22
CPEs cpe:2.3:a:samsung:members:*:*:*:*:*:*:*:*
Vendors & Products Samsung members
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N'}

Wed, 04 Feb 2026 21:30:00 +0000

Type Values Removed Values Added
First Time appeared Samsung
Samsung samsung Members
Vendors & Products Samsung
Samsung samsung Members

Wed, 04 Feb 2026 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 04 Feb 2026 06:45:00 +0000

Type Values Removed Values Added
Description Path traversal in Samsung Members prior to Chinese version 15.5.05.4 allows local attackers to overwrite data within Samsung Members.
References
Metrics cvssV4_0

{'score': 5.1, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N'}

Subscriptions

Samsung Members Samsung Members
cve-icon MITRE

Status: PUBLISHED

Assigner: SamsungMobile

Published:

Updated: 2026-02-04T16:58:28.932Z

Reserved: 2025-12-11T01:33:35.800Z

Link: CVE-2026-20986

cve-icon Vulnrichment

Updated: 2026-02-04T16:58:26.463Z

cve-icon NVD

Status : Analyzed

Published: 2026-02-04T07:16:00.770

Modified: 2026-02-25T18:50:29.397

Link: CVE-2026-20986

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-18T00:00:09Z

Weaknesses