Vulnerabilities > Samsung > Samsung PAY > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-09-09 CVE-2022-36870 Unspecified vulnerability in Samsung PAY and Samsung PAY KR
Pending Intent hijacking vulnerability in MTransferNotificationManager in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.
local
low complexity
samsung
6.5
2022-09-09 CVE-2022-36871 Unspecified vulnerability in Samsung PAY and Samsung PAY KR
Pending Intent hijacking vulnerability in NotiCenterUtils in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.
local
low complexity
samsung
6.5
2022-09-09 CVE-2022-36872 Unspecified vulnerability in Samsung PAY and Samsung PAY KR
Pending Intent hijacking vulnerability in SpayNotification in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.
local
low complexity
samsung
6.5