CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-20968

Improper access control in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.09.3 in China Android 13, and 15.5.04.5 in Android 14 allows remote attackers to access data and perform internal operations within Samsung Gallery.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 51.7%

CVSS Severity

CVSS v3 Score 7.2

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2025&month=05

Products affected by CVE-2025-20968

Samsung » Gallery » Version: N/A

cpe:2.3:a:samsung:gallery:-
Samsung » Gallery » Version: 14.5.01.2

cpe:2.3:a:samsung:gallery:14.5.01.2
Samsung » Gallery » Version: 14.5.04.4

cpe:2.3:a:samsung:gallery:14.5.04.4
Samsung » Gallery » Version: 14.5.09.3

cpe:2.3:a:samsung:gallery:14.5.09.3
Samsung » Gallery » Version: 14.5.10.3

cpe:2.3:a:samsung:gallery:14.5.10.3
Samsung » Android » Version: 13.0

cpe:2.3:o:samsung:android:13.0
Samsung » Android » Version: 14.0

cpe:2.3:o:samsung:android:14.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-20968

Products

Pricing

Contact Us