Lucene search
JpcertCVELIST:CVE-2023-40530HistoryAug 25, 2023 - 3:47 a.m.
CVE-2023-40530
2023-08-2503:47:15
jpcert
www.cve.org
improper authorization
skylark app
android
ios
arbitrary websites
Improper authorization in handler for custom URL scheme issue in ‘Skylark’ App for Android 6.2.13 and earlier and ‘Skylark’ App for iOS 6.2.13 and earlier allows an attacker to lead a user to access an arbitrary website via another application installed on the user’s device.
CNA Affected
[
{
"vendor": "SKYLARK HOLDINGS CO., LTD.",
"product": "'Skylark' App for Android",
"versions": [
{
"version": " 6.2.13 and earlier",
"status": "affected"
}
]
},
{
"vendor": "SKYLARK HOLDINGS CO., LTD.",
"product": "'Skylark' App for iOS",
"versions": [
{
"version": "6.2.13 and earlier",
"status": "affected"
}
]
}
]Related
nvd
nvd
CVE-2023-40530
2023-08-25 04:15:10
cve
cve
CVE-2023-40530
2023-08-25 04:15:10
prion
prion
Authorization
2023-08-25 04:15:00
jvn
jvn
JVN#03447226: "Skylark" App fails to restrict custom URL schemes properly
2023-08-24 00:00:00