CVE-2023-29738

Опубликовано: 30 мая 2023

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

An issue found in Wave Animated Keyboard Emoji v.1.70.7 for Android allows a local attacker to cause code execution and escalation of Privileges via the database files.

Ссылки

http://www.wavekeyboard.com/
Product
https://github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2023-29738/CVE%20detail.md
Exploit
Third Party Advisory
https://play.google.com/store/apps/details?id=com.amdroidalarmclock.amdroid
Product
https://play.google.com/store/apps/details?id=com.wave.keyboard
Product
http://www.wavekeyboard.com/
Product
https://github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2023-29738/CVE%20detail.md
Exploit
Third Party Advisory
https://play.google.com/store/apps/details?id=com.amdroidalarmclock.amdroid
Product
https://play.google.com/store/apps/details?id=com.wave.keyboard
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wavekeyboard:wave_animated_keyboard_emoji:1.70.7:*:*:*:*:android:*:*

EPSS

Процентиль: 36%

0.00149

Низкий

7.8 High

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-3482-3whx-826m