Описание
Improper authorization in handler for custom URL scheme vulnerability in あすけんダイエット (asken diet) for Android versions from v.3.0.0 to v.4.2.x allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App.
Ссылки
- Third Party Advisory
- Permissions RequiredVendor Advisory
- Third Party Advisory
- Permissions RequiredVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 3.0.0 (включая) до 4.3.0 (исключая)
cpe:2.3:a:asken:asken:*:*:*:*:*:android:*:*
EPSS
Процентиль: 48%
0.00254
Низкий
6.1 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-862
Связанные уязвимости
CVSS3: 6.1
github
больше 3 лет назад
Improper authorization in handler for custom URL scheme vulnerability in ????????? (asken diet) for Android versions from v.3.0.0 to v.4.2.x allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App.
EPSS
Процентиль: 48%
0.00254
Низкий
6.1 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-862