exploitDog

GHSA-m7f4-g3jc-wr42

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.9

Описание

The 1Password application 6.8 for Android is affected by a Denial Of Service vulnerability. By starting the activity com.agilebits.onepassword.filling.openyolo.OpenYoloDeleteActivity or com.agilebits.onepassword.filling.openyolo.OpenYoloRetrieveActivity from an external application (since they are exported), it is possible to crash the 1Password instance.

The 1Password application 6.8 for Android is affected by a Denial Of Service vulnerability. By starting the activity com.agilebits.onepassword.filling.openyolo.OpenYoloDeleteActivity or com.agilebits.onepassword.filling.openyolo.OpenYoloRetrieveActivity from an external application (since they are exported), it is possible to crash the 1Password instance.

Ссылки

EPSS

Процентиль: 93%

0.10158

Средний

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2018-13042

CVSS3: 5.9

nvd

больше 7 лет назад

The 1Password application 6.8 for Android is affected by a Denial Of Service vulnerability. By starting the activity com.agilebits.onepassword.filling.openyolo.OpenYoloDeleteActivity or com.agilebits.onepassword.filling.openyolo.OpenYoloRetrieveActivity from an external application (since they are exported), it is possible to crash the 1Password instance.

EPSS

Процентиль: 93%

0.10158

Средний

5.9 Medium

CVSS3

CVE ID

Дефекты

CWE-20