CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-0864

Samsung Account (AKA com.osp.app.signin) before 1.6.0069 and 2.x before 2.1.0069 allows man-in-the-middle attackers to obtain sensitive information and execute arbitrary code.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.6%

CVSS Severity

CVSS v3 Score 8.0

CVSS v2 Score 7.9

References

http://www.securityfocus.com/bid/97207
https://www.nowsecure.com/blog/2015/01/26/samsung-account-and-galaxy-apps-technical-breakdown-cve-2015-0863-and-cve-2015-0864/
http://www.securityfocus.com/bid/97207
https://www.nowsecure.com/blog/2015/01/26/samsung-account-and-galaxy-apps-technical-breakdown-cve-2015-0863-and-cve-2015-0864/

Products affected by CVE-2015-0864

Samsung » Galaxy App » Version: N/A

cpe:2.3:a:samsung:galaxy_app:-
Samsung » Samsung Account App » Version: N/A

cpe:2.3:a:samsung:samsung_account_app:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-0864

Products

Pricing

Contact Us