CVE-2024-54014

5 Dic 2024

Jose Alexis Correa Valencia
0 Comentarios

Título es

CVE-2024-54014

Jue, 05/12/2024 – 03:15

Tipo

CWE-939

Gravedad 2.0 Txt

Pendiente de análisis

Título en

CVE-2024-54014

Descripción en

Improper authorization in handler for custom URL scheme issue in 'Skylark' App for Android 6.2.13 and earlier and 'Skylark' App for iOS 6.2.13 and earlier allows an attacker to lead the application to access an arbitrary web site via another application installed on the user's device.

05/12/2024

Vector CVSS:3.1

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N

Gravedad 3.1 (CVSS 3.1 Base Score)

3.60

Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)

LOW

Referencias

https://apps.apple.com/jp/app/%E3%81%99%E3%81%8B%E3%81%84%E3%82%89%E3%83%BC%E3%81%8F%E3%82%A2%E3%83%97%E3%83%AA/id906930478

https://jvn.jp/en/jp/JVN03447226/

https://play.google.com/store/apps/details?id=jp.co.skylark.app.gusto

Enviar en el boletín