Design/Logic Flaw

2023-05-3023:15:00

PRIOn knowledge base

www.prio-n.com

design flaw

logic flaw

bestweather

android

privileges attack

database manipulation

9.1 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.8%

An issue found in BestWeather v.7.3.1 for Android allows unauthorized apps to cause an escalation of privileges attack by manipulating the database.

CPENameOperatorVersion
bestweathereq7.3.1

CPE	Name	Operator	Version
	bestweather	eq	7.3.1

References

www.zmtqsh.com/

github.com/LianKee/SO-CVEs/blob/main/CVEs/CVE-2023-29741/CVE%20detail.md

play.google.com/store/apps/details?id=com.icoolme.android.weather