Total
25 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-28776 | 1 Samsung | 1 Galaxy Store | 2024-11-21 | 4.6 MEDIUM | 5.9 MEDIUM |
| Improper access control vulnerability in Galaxy Store prior to version 4.5.36.4 allows attacker to install applications from Galaxy Store without user interactions. | |||||
| CVE-2022-28544 | 1 Samsung | 1 Galaxy Store | 2024-11-21 | 5.0 MEDIUM | 6.2 MEDIUM |
| Path traversal vulnerability in unzip method of InstallAgentCommonHelper in Galaxy store prior to version 4.5.40.5 allows attacker to access the file of Galaxy store. | |||||
| CVE-2022-28542 | 1 Samsung | 1 Galaxy Store | 2024-11-21 | 2.1 LOW | 6.8 MEDIUM |
| Improper sanitization of incoming intent in Galaxy Store prior to version 4.5.40.5 allows local attackers to access privileged content providers as Galaxy Store permission. | |||||
| CVE-2022-22288 | 1 Samsung | 1 Galaxy Store | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
| Improper authorization vulnerability in Galaxy Store prior to 4.5.36.5 allows remote app installation of the allowlist. | |||||
| CVE-2021-25499 | 1 Samsung | 1 Galaxy Store | 2024-11-21 | 2.1 LOW | 7.1 HIGH |
| Intent redirection vulnerability in SamsungAccountSDKSigninActivity of Galaxy Store prior to version 4.5.32.4 allows attacker to access content provider of Galaxy Store. | |||||