CVE-2022-36872 Information

Description

Pending Intent hijacking vulnerability in SpayNotification in Samsung Pay prior to version 5.0.63 for KR and 5.1.47 for Global allows attackers to access files without permission via implicit Intent.

Reference

https://security.samsungmobile.com/serviceWeb.smsb?year==2022&month=09