exploitDog

GHSA-xm4h-vrcx-rw8c

Опубликовано: 27 мая 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.

Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.

Ссылки

EPSS

Процентиль: 34%

0.00135

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2023-21514

CVSS3: 7.5

nvd

больше 2 лет назад

Improper scheme validation from InstantPlay Deeplink in Galaxy Store prior to version 4.5.49.8 allows attackers to execute javascript API to install APK from Galaxy Store.

EPSS

Процентиль: 34%

0.00135

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-20