CVE-2022-22286

Summary

A vulnerability using PendingIntent in Bixby Routines prior to version 3.1.21.8 in Android R(11.0) and 2.6.30.5 in Android Q(10.0) allows attackers to execute privileged action by hijacking and modifying the intent.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileBixby Routines- < 3.1.21.8 in Android R(11.0) and 2.6.30.5 in Android Q(10.0)affected

Weaknesses

  • CWE-94: CWE-94: Improper Control of Generation of Code ('Code Injection')

ADP Enrichment

CVE Program Container

Additional References

References