Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2022-28799
HistoryJun 02, 2022 - 2:15 p.m.

Code injection

2022-06-0214:15:00
PRIOn knowledge base
www.prio-n.com
1

8.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.3%

JSON

The TikTok application before 23.7.3 for Android allows account takeover. A crafted URL (unvalidated deeplink) can force the com.zhiliaoapp.musically WebView to load an arbitrary website. This may allow an attacker to leverage an attached JavaScript interface for the takeover with one click.

CPENameOperatorVersion
tiktoklt23.7.3

Related

cve 1
malwarebytes 1
mmpc 1
nvd 1
thn 1
mssecure 1
cvelist 1
cve
cve
CVE-2022-28799
2022-06-02 14:15:46
malwarebytes
malwarebytes
TikTok vulnerability could have allowed hijackers to take over accounts
2022-09-01 12:00:00
mmpc
mmpc
Vulnerability in TikTok Android app could lead to one-click account hijacking
2022-08-31 16:00:00
nvd
nvd
CVE-2022-28799
2022-06-02 14:15:46
thn
thn
Microsoft Discover Severe 'One-Click' Exploit for TikTok Android App
2022-09-01 07:13:00
mssecure
mssecure
Vulnerability in TikTok Android app could lead to one-click account hijacking
2022-08-31 16:00:00
cvelist
cvelist
CVE-2022-28799
2022-05-30 13:46:19

8.4 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.3%

JSON
Related for PRION:CVE-2022-28799
cve1malwarebytes1mmpc1nvd1thn1mssecure1cvelist1