CVE-2022-22286

Description

A vulnerability using PendingIntent in Bixby Routines prior to version 3.1.21.8 in Android R(11.0) and 2.6.30.5 in Android Q(10.0) allows attackers to execute privileged action by hijacking and modifying the intent.

CVSS Version 3.1
CVSS Version 2.0

nvd
CVE ID: CVE-2022-22286
Base Score: 7.1
Base Severity: HIGH
Vector String:CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Impact Score: 5.2
Exploitability Score: 1.8

samsung
CVE ID: CVE-2022-22286
Base Score: 4.4
Base Severity: MEDIUM
Vector String:CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Impact Score: 2.5
Exploitability Score: 1.8

nvd
CVE ID: CVE-2022-22286
Base Score: 3.6
Base Severity: LOW
Vector String:AV:L/AC:L/Au:N/C:P/I:P/A:N

Refrence: NVD MITRE

Description​

Description