Vulnerability Details CVE-2026-21001
Path traversal in Galaxy Store prior to version 4.6.03.8 allows local attacker to create file with Galaxy Store privilege.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.2%
CVSS Severity
CVSS v3 Score 5.5
Products affected by CVE-2026-21001
-
cpe:2.3:a:samsung:galaxy_store:-
-
cpe:2.3:a:samsung:galaxy_store:1.0.06.29
-
cpe:2.3:a:samsung:galaxy_store:4.5.32.4
-
cpe:2.3:a:samsung:galaxy_store:4.5.36.4
-
cpe:2.3:a:samsung:galaxy_store:4.5.41.8
-
cpe:2.3:a:samsung:galaxy_store:4.5.63.6
-
cpe:2.3:a:samsung:galaxy_store:4.5.64.4
-
cpe:2.3:a:samsung:galaxy_store:4.5.71.8
-
cpe:2.3:a:samsung:galaxy_store:4.5.81.0
-
cpe:2.3:a:samsung:galaxy_store:4.5.87.6
-
cpe:2.3:a:samsung:galaxy_store:4.5.90.7
-
cpe:2.3:a:samsung:galaxy_store:4.6.02.0