Shodan
Vulnerabilities
Vulnerable Software
Samsung:  >> Galaxy Store  Security Vulnerabilities
CVE-2023-30705
Improper sanitization of incoming intent in Galaxy Store prior to version 4.5.56.6?allows local attackers to access privileged content providers as Galaxy Store permission.
CVSS Score
6.8
EPSS Score
0.0
Published
2023-08-10
CVE-2023-21514
Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-05-26
CVE-2023-21515
InstantPlay which included vulnerable script which could execute javascript in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.
CVSS Score
7.5
EPSS Score
0.002
Published
2023-05-26
CVE-2023-21516
XSS vulnerability from InstantPlay in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.
CVSS Score
7.5
EPSS Score
0.004
Published
2023-05-26
CVE-2023-21433
Improper access control vulnerability in Galaxy Store prior to version 4.5.49.8 allows local attackers to install applications from Galaxy Store.
CVSS Score
7.8
EPSS Score
0.026
Published
2023-02-09
CVE-2023-21434
Improper input validation vulnerability in Galaxy Store prior to version 4.5.49.8 allows local attackers to execute JavaScript by launching a web page.
CVSS Score
6.2
EPSS Score
0.105
Published
2023-02-09
CVE-2022-33708
Improper input validation vulnerability in AppsPackageInstaller in Galaxy Store prior to version 4.5.41.8 allows local attackers to launch activities as Galaxy Store privilege.
CVSS Score
7.8
EPSS Score
0.0
Published
2022-07-12
CVE-2022-33709
Improper input validation vulnerability in ApexPackageInstaller in Galaxy Store prior to version 4.5.41.8 allows local attackers to launch activities as Galaxy Store privilege.
CVSS Score
7.8
EPSS Score
0.0
Published
2022-07-12
CVE-2022-33710
Improper input validation vulnerability in BillingPackageInsraller in Galaxy Store prior to version 4.5.41.8 allows local attackers to launch activities as Galaxy Store privilege.
CVSS Score
7.8
EPSS Score
0.0
Published
2022-07-12
CVE-2022-28791
Improper input validation vulnerability in InstallAgent in Galaxy Store prior to version 4.5.41.8 allows attacker to overwrite files stored in a specific path. The patch adds proper protection to prevent overwrite to existing files.
CVSS Score
6.2
EPSS Score
0.001
Published
2022-05-03


Products
Pricing
Contact Us

Shodan ® - All rights reserved