CVE-2024-54014

Published Dec 5, 2024

Last updated 3 months ago

Overview

Description: Improper authorization in handler for custom URL scheme issue in 'Skylark' App for Android 6.2.13 and earlier and 'Skylark' App for iOS 6.2.13 and earlier allows an attacker to lead the application to access an arbitrary web site via another application installed on the user's device.
Source: vultures@jpcert.or.jp
NVD status: Received

Risk scores

CVSS 3.0

Type: Secondary
Base score: 3.6
Impact score: 1.4
Exploitability score: 1.8
Vector string: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N
Severity: LOW

Weaknesses

vultures@jpcert.or.jp: CWE-939

Hype score: Not currently trending

CVE-2024-54014 Improper Authorization in 'Skylark' App Leads to URL Scheme Exploit A vulnerability in the 'Skylark' App for Android and iOS, versions 6.2.13 and earlier, allows improper authorization. This issue ... https://t.co/NNoZrdFBeu
@VulmonFeeds
5 Dec 2024
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes

References