23 matches found
CVE-2025-48558
CVE-2025-48558 affects the Android BatteryService.java component, where multiple functions could enable implicit intent hijacking of a system app. This yields local elevation of privilege without extra privileges or user interaction. The connected documents confirm the vulnerability type and impa...
CVE-2023-21466
PendingIntent hijacking vulnerability in CertificatePolicy in framework prior to SMR Apr-2023 Release 1 allows local attackers to access contentProvider without proper permission...
ASB-A-380885270
In multiple functions of BatteryService.java, there is a possible way to hijack implicit intent intended for system app due to Implicit intent hijacking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitatio...
CVE-2024-20826
Implicit intent hijacking vulnerability in UPHelper library prior to version 4.0.0 allows local attackers to access sensitive information via implicit intent...
PT-2024-18731 · Samsung · Galaxy Store
Name of the Vulnerable Software and Affected Versions: Galaxy Store versions prior to 4.5.63.6 Description: The issue allows local attackers to access sensitive information via implicit intent. This is related to an implicit intent hijacking vulnerability in the VoiceSearch component of the Galax...
PT-2023-28420 · Google · Android 12 +2
Name of the Vulnerable Software and Affected Versions: Firewall application versions prior to 12.1.00.24 in Android 11 Firewall application versions prior to 13.1.00.16 in Android 12 Firewall application versions prior to 14.1.00.7 in Android 13 Description: The issue allows a 3rd party applicati...
PT-2022-25049 · Uphelper · Uphelper
Name of the Vulnerable Software and Affected Versions: UPHelper library versions prior to 3.0.12 Description: The issue allows attackers to access sensitive information via implicit intent, specifically through an implicit intent hijacking vulnerability in the UPHelper library. Recommendations: F...
CVE-2022-36871
Pending Intent hijacking vulnerability in NotiCenterUtils in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent...
CVE-2022-36870
Pending Intent hijacking vulnerability in MTransferNotificationManager in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent...
CVE-2022-36872
Pending Intent hijacking vulnerability in SpayNotification in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent...
CVE-2022-36872
Pending Intent hijacking vulnerability in SpayNotification in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent...
SAMSUNG Mobile devices 安全漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc. from the South Korean company Samsung. A security vulnerability exists in SAMSUNG Mobile devices version 5.1.47 for international and 5.0.63 for Korea, which stems from MTransferNotificationManager ...
PT-2022-23639 · Samsung · Samsung Internet Browser
Name of the Vulnerable Software and Affected Versions: Samsung Internet Browser versions prior to 17.0.7.34 Description: The issue allows attackers to access arbitrary files through an Implicit Intent hijacking vulnerability. Recommendations: For versions prior to 17.0.7.34, update to version...
SAMSUNG Mobile devices 安全漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices from the South Korean company Samsung, including cell phones, tablets, and more. A security vulnerability exists in SAMSUNG Mobile devices Charm versions prior to 1.2.3, which stems from a PendingIntent hijacking vulnerability in...
CVE-2022-30755
Improper authentication vulnerability in AppLock prior to SMR Jul-2022 Release 1 allows attacker to bypass password confirm activity by hijacking the implicit intent...
CVE-2022-30729
Implicit Intent hijacking vulnerability in Settings prior to SMR Jun-2022 Release 1 allows attackers to get Wi-Fi SSID and password via a malicious QR code scanner...
CVE-2022-30729
Implicit Intent hijacking vulnerability in Settings prior to SMR Jun-2022 Release 1 allows attackers to get Wi-Fi SSID and password via a malicious QR code scanner...
CVE-2022-24000
PendingIntent hijacking vulnerability in DataUsageReminderReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission in KnoxPrivacyNoticeReceiver via implicit Intent...
CVE-2022-23434
A vulnerability using PendingIntent in Bixby Vision prior to versions 3.7.60.8 in Android S12, 3.7.50.6 in Andorid R11 and below allows attackers to execute privileged action by hijacking and modifying the intent...
Samsung KnoxPrivacyNoticeReceiver 输入验证错误漏洞
Samsung SettingsReceiver is a component in Samsung Samsung mobile devices. Samsung SettingsReceiver suffers from a PendingIntent hijacking vulnerability that originates from unauthorized access in SettingsReceiver, which can be exploited by a local attacker to gain unauthorized access to media...