Vulnerability Details CVE-2026-21002
Improper verification of cryptographic signature in Galaxy Store prior to version 4.6.03.8 allows local attacker to install arbitrary application.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.8%
CVSS Severity
CVSS v3 Score 5.5
Products affected by CVE-2026-21002
-
cpe:2.3:a:samsung:galaxy_store:-
-
cpe:2.3:a:samsung:galaxy_store:1.0.06.29
-
cpe:2.3:a:samsung:galaxy_store:4.5.32.4
-
cpe:2.3:a:samsung:galaxy_store:4.5.36.4
-
cpe:2.3:a:samsung:galaxy_store:4.5.41.8
-
cpe:2.3:a:samsung:galaxy_store:4.5.63.6
-
cpe:2.3:a:samsung:galaxy_store:4.5.64.4
-
cpe:2.3:a:samsung:galaxy_store:4.5.71.8
-
cpe:2.3:a:samsung:galaxy_store:4.5.81.0
-
cpe:2.3:a:samsung:galaxy_store:4.5.87.6
-
cpe:2.3:a:samsung:galaxy_store:4.5.90.7
-
cpe:2.3:a:samsung:galaxy_store:4.6.02.0