Samsung Gallery vulnerabilities

8 known vulnerabilities affecting samsung/gallery.

Total CVEs
8
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2MEDIUM4LOW2

Vulnerabilities

Page 1 of 1
CVE-2025-20967CRITICALCVSS 9.1fixed in 14.5.10.3fixed in 14.5.09.3+1 more2025-05-07
CVE-2025-20967 [MEDIUM] CVE-2025-20967: Improper access control in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.09. Improper access control in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.09.3 in China Android 13, and 15.5.04.5 in Android 14 allows attackers to read and write arbitrary file with the privilege of Samsung Gallery.
nvd
CVE-2025-20968CRITICALCVSS 9.1fixed in 14.5.10.3fixed in 14.5.09.3+1 more2025-05-07
CVE-2025-20968 [HIGH] CVE-2025-20968: Improper access control in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.09. Improper access control in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.09.3 in China Android 13, and 15.5.04.5 in Android 14 allows remote attackers to access data and perform internal operations within Samsung Gallery.
nvd
CVE-2025-20966MEDIUMCVSS 4.6fixed in 14.5.10.3fixed in 14.5.09.3+1 more2025-05-07
CVE-2025-20966 [MEDIUM] CVE-2025-20966: Improper access control in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.09. Improper access control in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.09.3 in China Android 13, and 15.5.04.5 in Android 14 allows physical attackers to access data across multiple user profiles.
nvd
CVE-2025-20969MEDIUMCVSS 5.5fixed in 14.5.10.3fixed in 14.5.09.3+1 more2025-05-07
CVE-2025-20969 [MEDIUM] CVE-2025-20969: Improper input validation in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.0 Improper input validation in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.09.3 in China Android 13, and 15.5.04.5 in Android 14 allows local attackers to access data within Samsung Gallery.
nvd
CVE-2024-20827MEDIUMCVSS 4.6fixed in 14.5.04.42024-02-06
CVE-2024-20827 [MEDIUM] CVE-2024-20827: Improper access control vulnerability in Samsung Gallery prior to version 14.5.04.4 allows physical Improper access control vulnerability in Samsung Gallery prior to version 14.5.04.4 allows physical attackers to access the picture using physical keyboard on the lockscreen.
nvd
CVE-2023-30725MEDIUMCVSS 5.5fixed in 14.5.01.22023-09-06
CVE-2023-30725 [MEDIUM] CWE-287 CVE-2023-30725: Improper authentication in LocalProvier of Gallery prior to version 14.5.01.2 allows attacker to acc Improper authentication in LocalProvier of Gallery prior to version 14.5.01.2 allows attacker to access the data in content provider.
nvd
CVE-2023-30724LOWCVSS 3.3fixed in 14.5.01.22023-09-06
CVE-2023-30724 [MEDIUM] CWE-287 CVE-2023-30724: Improper authentication in GallerySearchProvider of Gallery prior to version 14.5.01.2 allows attack Improper authentication in GallerySearchProvider of Gallery prior to version 14.5.01.2 allows attacker to access search history.
nvd
CVE-2021-25379LOWCVSS 3.3fixed in 5.4.16.12021-04-09
CVE-2021-25379 [MEDIUM] CWE-926 CVE-2021-25379: Intent redirection vulnerability in Gallery prior to version 5.4.16.1 allows attacker to execute pri Intent redirection vulnerability in Gallery prior to version 5.4.16.1 allows attacker to execute privileged action.
nvd