CVE-2022-36872

Pending Intent hijacking vulnerability in SpayNotification in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.

Link	Resource
https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=09	Vendor Advisory

Configuration 1

cpe:2.3:a:samsung:samsung_pay_kr:*:*:*:*:*:android:*:* cpe:2.3:a:samsung:samsung_pay:*:*:*:*:*:android:*:*

---

Published : 2022-09-09 03:15

Updated : 2022-10-01 02:16

---

NVD link : CVE-2022-36872

Mitre link : CVE-2022-36872

No products.

NVD-CWE-noinfo