Intent Redirection Vulnerability in Samsung Account Software
CVE-2022-39863

3.6LOW

Key Information:

Vendor: Samsung
Status: Samsung Account
Vendor: CVE Published:; 7 October 2022

What is CVE-2022-39863?

An intent redirection vulnerability has been identified in Samsung Account prior to version 13.5.01.3. This flaw allows attackers to exploit the app to access content providers without appropriate permissions, potentially leading to unauthorized access to sensitive information.

Affected Version(s)

Samsung Account < 13.5.01.3

References

https://security.samsungmobile.com/serviceWeb.smsb?year=2...

CVSS V3.1

Score:

3.6

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 7, 2022
Vulnerability Reserved
Sep 5, 2022