CVE-2022-23434 Information

Description

A vulnerability using PendingIntent in Bixby Vision prior to versions 3.7.60.8 in Android S(12) 3.7.50.6 in Andorid R(11) and below allows attackers to execute privileged action by hijacking and modifying the intent.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Reference

https://security.samsungmobile.com/serviceWeb.smsb?year=2022&month=2

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

LOW

Base Score

NONE

Base Severity

3.3