Privilege Escalation Vulnerability in Galaxy Store's AppsPackageInstaller

Privilege Escalation Vulnerability in Galaxy Store's AppsPackageInstaller

CVE-2022-33708 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Improper input validation vulnerability in AppsPackageInstaller in Galaxy Store prior to version 4.5.41.8 allows local attackers to launch activities as Galaxy Store privilege.

Learn more about our Web Application Penetration Testing UK.