Vulnerability Details CVE-2025-20967
Improper access control in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.09.3 in China Android 13, and 15.5.04.5 in Android 14 allows attackers to read and write arbitrary file with the privilege of Samsung Gallery.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.1%
CVSS Severity
CVSS v3 Score 5.1
Products affected by CVE-2025-20967
-
cpe:2.3:a:samsung:gallery:-
-
cpe:2.3:a:samsung:gallery:14.5.01.2
-
cpe:2.3:a:samsung:gallery:14.5.04.4
-
cpe:2.3:a:samsung:gallery:14.5.09.3
-
cpe:2.3:a:samsung:gallery:14.5.10.3
-
cpe:2.3:o:samsung:android:13.0
-
cpe:2.3:o:samsung:android:14.0