exploitDog

GHSA-96qx-whg9-w5rw

Опубликовано: 16 авг. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Improper authorization in the custom URL scheme handler in "Rikunabi NEXT" App for Android prior to ver. 11.5.0 allows a malicious intent to lead the vulnerable App to access an arbitrary website.

Improper authorization in the custom URL scheme handler in "Rikunabi NEXT" App for Android prior to ver. 11.5.0 allows a malicious intent to lead the vulnerable App to access an arbitrary website.

Ссылки

EPSS

Процентиль: 22%

0.00071

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-862

Связанные уязвимости

CVE-2023-39507

CVSS3: 6.1

nvd

больше 2 лет назад

Improper authorization in the custom URL scheme handler in "Rikunabi NEXT" App for Android prior to ver. 11.5.0 allows a malicious intent to lead the vulnerable App to access an arbitrary website.

EPSS

Процентиль: 22%

0.00071

Низкий

6.1 Medium

CVSS3

CVE ID

Дефекты

CWE-862