Vulnerability Details CVE-2026-20976
Improper input validation in Galaxy Store prior to version 4.6.02 allows local attacker to execute arbitrary script.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 9.5%
CVSS Severity
CVSS v3 Score 7.8
Products affected by CVE-2026-20976
-
cpe:2.3:a:samsung:galaxy_store:-
-
cpe:2.3:a:samsung:galaxy_store:4.5.32.4
-
cpe:2.3:a:samsung:galaxy_store:4.5.36.4
-
cpe:2.3:a:samsung:galaxy_store:4.5.41.8
-
cpe:2.3:a:samsung:galaxy_store:4.5.63.6
-
cpe:2.3:a:samsung:galaxy_store:4.5.64.4
-
cpe:2.3:a:samsung:galaxy_store:4.5.71.8
-
cpe:2.3:a:samsung:galaxy_store:4.5.81.0
-
cpe:2.3:a:samsung:galaxy_store:4.5.87.6
-
cpe:2.3:a:samsung:galaxy_store:4.5.90.7