The vulnerability of the library for implementing navigation in Android Jetpack Navigation Library lies in the improper definition of symbolic links before accessing a file. This allows attackers to bypass existing security restrictions, gain unauthorized access to the application, and inject arbitrary parameters into it.

The vulnerability of the Android Jetpack Navigation Library, which is used for navigation in applications, is related to incorrect definition of symbolic links before accessing the file. Exploiting this vulnerability can allow attackers to bypass existing security restrictions, gain unauthorized...

PT-2024-35: Automatic explicit deep link assignment in Android Jetpack Navigation Library

The vulnerability was identified in Android Jetpack Navigation Library in versions 2.8.1. The discovered vulnerability allows an attacker, using automatically assigned explicit deep links, to open arbitrary screens in the application and pass them arbitrary parameters Vulnerability status:...