Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2022-28799
HistoryMay 30, 2022 - 1:46 p.m.

CVE-2022-28799

2022-05-3013:46:19
mitre
www.cve.org

8.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.3%

JSON

The TikTok application before 23.7.3 for Android allows account takeover. A crafted URL (unvalidated deeplink) can force the com.zhiliaoapp.musically WebView to load an arbitrary website. This may allow an attacker to leverage an attached JavaScript interface for the takeover with one click.

Related

cve 1
malwarebytes 1
mmpc 1
prion 1
nvd 1
thn 1
mssecure 1
cve
cve
CVE-2022-28799
2022-06-02 14:15:46
malwarebytes
malwarebytes
TikTok vulnerability could have allowed hijackers to take over accounts
2022-09-01 12:00:00
mmpc
mmpc
Vulnerability in TikTok Android app could lead to one-click account hijacking
2022-08-31 16:00:00
prion
prion
Code injection
2022-06-02 14:15:00
nvd
nvd
CVE-2022-28799
2022-06-02 14:15:46
thn
thn
Microsoft Discover Severe 'One-Click' Exploit for TikTok Android App
2022-09-01 07:13:00
mssecure
mssecure
Vulnerability in TikTok Android app could lead to one-click account hijacking
2022-08-31 16:00:00

8.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.3%

JSON
Related for CVELIST:CVE-2022-28799
cve1malwarebytes1mmpc1prion1nvd1thn1mssecure1