CVE Vulnerabilities

CVE-2024-20870

Published: May 07, 2024 | Modified: Jul 17, 2025
CVSS 3.x
5.5
MEDIUM
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

Improper verification of intent by broadcast receiver vulnerability in Galaxy Store prior to version 4.5.71.8 allows local attackers to write arbitrary files with the privilege of Galaxy Store.

Affected Software

Name Vendor Start Version End Version
Galaxy_store Samsung * 4.5.71.8 (excluding)

References