CVE-2022-36830

CVE-2022-36830 affects Samsung Charm (Charm by Samsung) prior to version 1.2.3. The root cause is a PendingIntent hijacking in the cancelAlarmManager, enabling local attackers to access files without permission via implicit intents. Affected software is Charm before 1.2.3; impact includes high co...

CVE-2022-36830

PendingIntent hijacking vulnerability in cancelAlarmManager in Charm by Samsung prior to version 1.2.3 allows local attackers to access files without permission via implicit intent...

CVE-2022-36829

Summary of findings (CVE-2022-36829) : The vulnerability affects Charm by Samsung, in the releaseAlarm function. It is a PendingIntent hijacking issue that allows local attackers to access files without permission via implicit intents on versions prior to 1.2.3 . The root cause is a flaw in how r...

CVE-2022-36829

PendingIntent hijacking vulnerability in releaseAlarm in Charm by Samsung prior to version 1.2.3 allows local attackers to access files without permission via implicit intent...

SAMSUNG Email 安全漏洞

SAMSUNG Email is an email application from Samsung South Korea. It enables users to seamlessly manage multiple personal and business email accounts. A security vulnerability exists in SAMSUNG Email prior to version 6.1.70.20, which stems from a redirection with implicit intent vulnerability that...

Samsung App lock authentication error vulnerability

Samsung App lock is an application for Samsung Samsung mobile devices that protects your privacy with password lock, graphical lock, and fingerprint lock.Samsung App lock suffers from an authentication error vulnerability that stems from the lack of proper authentication logic in AppLock, which c...

Samsung Finder has an unspecified vulnerability

Samsung Finder is a feature of Samsung mobile devices in South Korea.A security vulnerability exists in Samsung Finder that stems from the fact that when implicit intent invocation is used, no restrictions are placed on the intent message recipient, and an attacker could use the vulnerability to...

CVE-2022-33712

Intent redirection vulnerability using implict intent in Camera prior to versions 12.0.01.64 ,12.0.3.23, 12.0.0.98, 12.0.6.11, 12.0.3.19 in Android S12 allows attacker to get sensitive information...

CVE-2022-33712

Intent redirection vulnerability using implict intent in Camera prior to versions 12.0.01.64 ,12.0.3.23, 12.0.0.98, 12.0.6.11, 12.0.3.19 in Android S12 allows attacker to get sensitive information...

CVE-2022-33712

Intent redirection vulnerability using implict intent in Camera prior to versions 12.0.01.64 ,12.0.3.23, 12.0.0.98, 12.0.6.11, 12.0.3.19 in Android S12 allows attacker to get sensitive information...

CVE-2022-30755

Improper authentication vulnerability in AppLock prior to SMR Jul-2022 Release 1 allows attacker to bypass password confirm activity by hijacking the implicit intent...

Samsung Settings Implicit Intent Hijacking Vulnerability

Samsung Settings is a settings feature for Samsung Samsung mobile devices.An implicit intent hijacking vulnerability exists in Samsung Settings. The vulnerability stems from hijacking of unprivileged applications and can be exploited by attackers to obtain Wi-Fi SSIDs and passwords using a...

Samsung Account Implicit Intent Hijacking Vulnerability (CNVD-2022-76510)

Samsung Account is a mobile account feature for Samsung Samsung mobile devices.An implicit intent hijacking vulnerability exists in versions prior to Samsung Account 13.2.00.6. The vulnerability stems from the email ID in Samsung Account not being properly protected. An attacker could exploit the...

Samsung Account Implicit Intent Hijacking Vulnerability

Samsung Account is a mobile account feature for Samsung Samsung mobile devices.An implicit intent hijacking vulnerability exists in Samsung Account. The vulnerability stems from hijacking of non-privileged applications and can be exploited by attackers to bypass user confirmation of Samsung Accou...

Samsung SmartThings PendingIntent Hijacking Vulnerability

SmartThings is a powerful Samsung smart home mobile app. A PendingIntent hijacking vulnerability exists in versions prior to Samsung SmartThings 1.7.85.25. An unauthorized local attacker can exploit the vulnerability to access files via an implicit Intent...

CVE-2022-30747

PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to access files without permission via implicit Intent...

Spoofing

PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to access files without permission via implicit Intent...

CVE-2022-30747

The CVE-2022-30747 issue affects Samsung SmartThings on Android, where a PendingIntent hijacking vulnerability in the app allows a local attacker to access files via an implicit Intent. Impact is realized if using versions prior to Samsung SmartThings 1.7.85.25; the documents indicate this fix ve...

CVE-2022-30747

PendingIntent hijacking vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to access files without permission via implicit Intent...

CVE-2022-30722

Implicit Intent hijacking vulnerability in Samsung Account prior to SMR Jun-2022 Release 1 allows attackers to bypass user confirmation of Samsung Account...