4 matches found
CVE-2024-45203
creationtimestamp| type| source ---|---|--- 2024-09-09 09:47:54+00:00| seen| https://t.me/cvedetector/5100 2025-03-13 19:42:30+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7472...
CVE-2024-45203
Improper authorization in handler for custom URL scheme issue in "@cosme" App for Android versions prior 5.69.0 and "@cosme" App for iOS versions prior to 6.74.0 allows an attacker to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a...
CVE-2024-45203
CVE-2024-45203 concerns the @cosme App (Android before 5.69.0; iOS before 6.74.0) where the custom URL scheme handler improperly authorizes, allowing an attacker to direct a user to an arbitrary website and potentially phish. The root cause is inadequate restriction of the URL scheme handler, ena...
CVE-2024-45203
Improper authorization in handler for custom URL scheme issue in "@cosme" App for Android versions prior 5.69.0 and "@cosme" App for iOS versions prior to 6.74.0 allows an attacker to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a...