ApexPackageInstaller Local Privilege Escalation Vulnerability

ApexPackageInstaller Local Privilege Escalation Vulnerability

CVE-2022-33709 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Improper input validation vulnerability in ApexPackageInstaller in Galaxy Store prior to version 4.5.41.8 allows local attackers to launch activities as Galaxy Store privilege.

Learn more about our Web Application Penetration Testing UK.