CVE-2024-20850

Summary

Use of Implicit Intent for Sensitive Communication in Samsung Pay prior to version 5.4.99 allows local attackers to access information of Samsung Pay.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Pay5.4.99unaffected

Weaknesses

  • CWE-927: Use of Implicit Intent for Sensitive Communication

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References