PT-2025-20052 · Samsung · Samsung Gallery
Sam Of Honor Cyber Security Lab
·
Published
2024-08-07
·
Updated
2025-05-07
·
CVE-2025-20967
CVSS v3.1
9.1
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Samsung Gallery versions prior to 14.5.10.3 in Global Android 13
Samsung Gallery versions prior to 14.5.09.3 in China Android 13
Samsung Gallery versions prior to 15.5.04.5 in Android 14
Description
The issue is related to improper access control in Samsung Gallery, allowing attackers to read and write arbitrary files with the privilege of Samsung Gallery.
Recommendations
For Samsung Gallery versions prior to 14.5.10.3 in Global Android 13, update to version 14.5.10.3 or later.
For Samsung Gallery versions prior to 14.5.09.3 in China Android 13, update to version 14.5.09.3 or later.
For Samsung Gallery versions prior to 15.5.04.5 in Android 14, update to version 15.5.04.5 or later.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Samsung Gallery