CVE-2026-20976
published 2026-01-09CVE-2026-20976: Improper input validation in Galaxy Store prior to version 4.6.02 allows local attacker to execute arbitrary script.
medium5.1CVSS 4.0
AVLACLATNPRNUINVCLVINVANSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
Improper input validation in Galaxy Store prior to version 4.6.02 allows local attacker to execute arbitrary script.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| samsung | galaxy_store | < 4.6.02.0 | 4.6.02.0 |