Description
Path traversal in Galaxy Store prior to version 4.6.03.8 allows local attacker to create file with Galaxy Store privilege.
Published: 2026-03-16
Score: 5.9 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation / Local File Write
Action: Patch Immediately
AI Analysis

Impact

An improper handling of file paths in Samsung Mobile's Galaxy Store allows a local attacker to construct a path that escapes the intended directory boundary, enabling creation or modification of arbitrary files. The vulnerability is classified as improper path handling (CWE‑22) and could lead to file overwrite or insertion with the same privilege level as the Galaxy Store service, potentially allowing an attacker to install malicious payloads or manipulate app data.

Affected Systems

Samsung Mobile devices running the Galaxy Store application version earlier than 4.6.03.8 are affected. The issue applies to all Galaxy Store installations on Samsung mobile platforms that have not applied any patches beyond that version.

Risk and Exploitability

The CVSS base score of 5.9 indicates moderate severity, with an EPSS below 1% suggesting low probability of exploitation in the wild. The vulnerability does not appear in the CISA KEV catalog. Because the attack requires local access to the device and the ability to invoke Galaxy Store functions, the attack vector is likely local and does not permit remote exploitation. An attacker would need physical or root‑level control of the device to trigger the path traversal and write files with Galaxy Store privileges.

Generated by OpenCVE AI on April 8, 2026 at 21:37 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Samsung Galaxy Store to version 4.6.03.8 or later, ensuring all devices run a patched build.
  • Verify that the device’s installed Galaxy Store version matches the patched release or consult Samsung’s official security advisories for updates.
  • If an immediate update is not possible, consider disabling or uninstalling the Galaxy Store application to deny the local privilege required for exploitation.

Generated by OpenCVE AI on April 8, 2026 at 21:37 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 09 Apr 2026 08:30:00 +0000

Type Values Removed Values Added
Title Local File Write via Path Traversal in Samsung Galaxy Store

Wed, 08 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
Title Path Traversal in Samsung Galaxy Store Allows Local Privilege Escalation
Weaknesses CWE-20

Tue, 07 Apr 2026 00:45:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:samsung:galaxy_store:*:*:*:*:*:*:*:*
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N'}

Fri, 27 Mar 2026 20:30:00 +0000

Type Values Removed Values Added
Title Path Traversal in Samsung Galaxy Store Allows Local Privilege Escalation
Weaknesses CWE-20
CWE-22

Fri, 27 Mar 2026 10:00:00 +0000

Type Values Removed Values Added
Title Path Traversal in Galaxy Store Enables Local Privilege Escalation
Weaknesses CWE-22

Fri, 27 Mar 2026 08:45:00 +0000

Type Values Removed Values Added
Title Path Traversal in Galaxy Store Enables Local Privilege Escalation
Weaknesses CWE-22

Thu, 26 Mar 2026 12:30:00 +0000

Type Values Removed Values Added
Title Local File Creation via Path Traversal in Samsung Galaxy Store
Weaknesses CWE-23

Wed, 25 Mar 2026 22:00:00 +0000

Type Values Removed Values Added
Title Local File Creation via Path Traversal in Samsung Galaxy Store
Weaknesses CWE-23

Wed, 25 Mar 2026 15:00:00 +0000

Type Values Removed Values Added
Title Local Path Traversal in Samsung Galaxy Store Enabling Privileged File Creation
Weaknesses CWE-22

Wed, 25 Mar 2026 12:00:00 +0000

Type Values Removed Values Added
Title Local Path Traversal in Samsung Galaxy Store Enabling Privileged File Creation
Weaknesses CWE-22

Tue, 17 Mar 2026 10:00:00 +0000

Type Values Removed Values Added
First Time appeared Samsung
Samsung galaxy Store
Vendors & Products Samsung
Samsung galaxy Store

Mon, 16 Mar 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 16 Mar 2026 04:45:00 +0000

Type Values Removed Values Added
Description Path traversal in Galaxy Store prior to version 4.6.03.8 allows local attacker to create file with Galaxy Store privilege.
References
Metrics cvssV4_0

{'score': 5.9, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N'}

Subscriptions

Samsung Galaxy Store
cve-icon MITRE

Status: PUBLISHED

Assigner: SamsungMobile

Published:

Updated: 2026-03-16T13:59:43.525Z

Reserved: 2025-12-11T01:33:35.802Z

Link: CVE-2026-21001

cve-icon Vulnrichment

Updated: 2026-03-16T13:59:40.760Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-16T14:18:11.217

Modified: 2026-04-07T00:35:35.413

Link: CVE-2026-21001

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-09T08:29:47Z

Weaknesses