PT-2025-35374 · Thinkyeah · Galleryvault
Fxizenta
·
Published
2025-08-30
·
Updated
2025-08-30
·
CVE-2025-9695
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
GalleryVault Gallery Vault App versions up to 4.5.2
Description
A vulnerability exists in GalleryVault Gallery Vault App on Android, related to improper export of android application components due to an issue with the file
AndroidManifest.xml of the component com.thinkyeah.galleryvault. The attack can only be performed locally. The exploit is publicly available.Recommendations
Update GalleryVault Gallery Vault App to a version later than 4.5.2.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Galleryvault