cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-36872,https://securityvulnerability.io/vulnerability/CVE-2022-36872,Intent Hijacking Vulnerability in Samsung Pay,"The vulnerability in Samsung Pay arises from the SpayNotification component, which allows for pending Intent hijacking. This security flaw permits unauthorized access to files via implicit Intent, compromising user data and privacy. Users of Samsung Pay prior to specified versions are at risk and should seek updates to protect against potential exploitation.",Samsung,Samsung Pay,5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2022-09-09T14:40:02.000Z,0
CVE-2022-36870,https://securityvulnerability.io/vulnerability/CVE-2022-36870,Pending Intent Hijacking Vulnerability in Samsung Pay,"A pending intent hijacking vulnerability exists in the MTransferNotificationManager component of Samsung Pay. This flaw allows attackers to exploit implicit intents, which can enable unauthorized file access without the necessary permissions. This issue impacts versions of Samsung Pay prior to 5.0.63 for South Korea and 5.1.47 for global users. It emphasizes the importance of secure intent handling within mobile applications.",Samsung,Samsung Pay,5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2022-09-09T14:40:01.000Z,0
CVE-2022-36871,https://securityvulnerability.io/vulnerability/CVE-2022-36871,Intent Hijacking Vulnerability in Samsung Pay,"An Intent hijacking vulnerability exists in NotiCenterUtils within Samsung Pay, allowing unauthorized attackers to access internal files without the proper permissions. This issue affects versions prior to 5.0.63 for the KR region and 5.1.47 globally, posing a security risk for users who have not updated their application. Attackers could exploit this vulnerability by leveraging implicit Intent, which can lead to exposure of sensitive data.",Samsung,Samsung Pay,5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2022-09-09T14:40:01.000Z,0
CVE-2021-25527,https://securityvulnerability.io/vulnerability/CVE-2021-25527,Improper Export Vulnerability in Samsung Pay,"An improper export vulnerability in Samsung Pay, specifically for users in India, allows unauthorized access to the Bill Pay and Recharge menu. This flaw exists in versions prior to 4.1.77, creating a risk where an attacker can exploit this weakness to perform actions without the necessary authentication, leading to potential financial and personal data exposure.",Samsung,Samsung Pay,3.8,LOW,0.0004199999966658652,false,,false,false,false,,,false,false,,2021-12-08T14:20:57.000Z,0
CVE-2021-25525,https://securityvulnerability.io/vulnerability/CVE-2021-25525,Improper Exception Handling in Samsung Pay for NFC Transactions,"A vulnerability in Samsung Pay for US users prior to version 4.0.65 allows attackers to exploit improper exception handling. This issue enables unauthorized NFC transactions without user consent, potentially exposing users to financial risks. Regular updates and patches are crucial for maintaining secure mobile payment systems.",Samsung,Samsung Pay,2,LOW,0.0005600000149570405,false,,false,false,false,,,false,false,,2021-12-08T14:20:47.000Z,0
CVE-2021-25333,https://securityvulnerability.io/vulnerability/CVE-2021-25333,,Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen via scanning specific QR code.,Samsung,Samsung Pay Mini,3.2,LOW,0.0005600000149570405,false,,false,false,false,,,false,false,,2021-03-04T20:56:17.000Z,0
CVE-2021-25332,https://securityvulnerability.io/vulnerability/CVE-2021-25332,,Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to contacts information over the lockscreen in specific condition.,Samsung,Samsung Pay Mini,3.2,LOW,0.0005600000149570405,false,,false,false,false,,,false,false,,2021-03-04T20:55:45.000Z,0
CVE-2021-25331,https://securityvulnerability.io/vulnerability/CVE-2021-25331,,Improper access control in Samsung Pay mini application prior to v4.0.14 allows unauthorized access to balance information over the lockscreen in specific condition.,Samsung,Samsung Pay Mini,3.2,LOW,0.0005600000149570405,false,,false,false,false,,,false,false,,2021-03-04T20:55:20.000Z,0