Improper access control

2022-04-1120:15:00

PRIOn knowledge base

www.prio-n.com

4.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Improper access control vulnerability in Samsung Members prior to version 13.6.08.5 allows local attacker to execute call function without CALL_PHONE permission.

CPENameOperatorVersion
memberslt13.6.08.5

CPE	Name	Operator	Version
	members	lt	13.6.08.5

References

security.samsungmobile.com/serviceWeb.smsb?year=2022&month=4