VYPR

Galaxy Themes

by Samsung Mobile

CVEs (2)

  • CVE-2022-28783May 3, 2022
    risk 0.00cvss epss 0.00

    Improper validation of removing package name in Galaxy Themes prior to SMR May-2022 Release 1 allows attackers to uninstall arbitrary packages without permission. The patch adds proper validation logic for removing package name.

  • CVE-2021-25353Mar 25, 2021
    risk 0.00cvss epss 0.00

    Using empty PendingIntent in Galaxy Themes prior to version 5.2.00.1215 allows local attackers to read/write private file directories of Galaxy Themes application without permission via hijacking the PendingIntent.