CVE-2022-36829: PendingIntent hijacking vulnerability in releaseAlarm in Charm by Samsung prior to version 1.2.3 allows local attackers to access files without permission via…

medium5.5CVSS 3.1

AVLACLPRLUINSUCHINAN

PendingIntent hijacking vulnerability in releaseAlarm in Charm by Samsung prior to version 1.2.3 allows local attackers to access files without permission via implicit intent.

Affected

2 ranges

Vendor	Product	Version range	Fixed in
samsung	charm_firmware	< 1.2.3	1.2.3
samsung_mobile	charm_by_samsung	>= unspecified < 1.2.3	1.2.3