CVE-2026-20994

HIGH

Samsung Account <15.5.01.1 - Open Redirect

Title source: llm

Description

URL redirection in Samsung Account prior to version 15.5.01.1 allows remote attackers to potentially get access token.

References (1)

Scores

CVSS v4 7.0
EPSS 0.0028
EPSS Percentile 51.4%
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N

Details

Status published
Products (1)
Samsung Mobile/Samsung Account 15.5.01.1
Published Mar 16, 2026
Tracked Since Mar 16, 2026