6 matches found
CVE-2025-9673
A vulnerability was detected in Kakao 헤이카카오 Hey Kakao App up to 2.17.4 on Android. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.kakao.i.connect. The manipulation results in improper export of android application components. The...
CVE-2025-9673
The CVE-2025-9673 entry concerns Kakao Hey Kakao App for Android (up to version 2.17.4) and affects the com.kakao.i.connect AndroidManifest.xml. The root cause is an improper export of Android components within the AndroidManifest.xml, enabling a local attack vector. Public exploitation is report...
CVE-2025-9673 Kakao 헤이카카오 Hey Kakao App com.kakao.i.connect AndroidManifest.xml improper export of android application components
A vulnerability was detected in Kakao 헤이카카오 Hey Kakao App up to 2.17.4 on Android. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.kakao.i.connect. The manipulation results in improper export of android application components. The...
CVE-2025-9673 Kakao 헤이카카오 Hey Kakao App com.kakao.i.connect AndroidManifest.xml improper export of android application components
A vulnerability was detected in Kakao 헤이카카오 Hey Kakao App up to 2.17.4 on Android. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.kakao.i.connect. The manipulation results in improper export of android application components. The...
PT-2025-35310
Name of the Vulnerable Software and Affected Versions: Kakao Hey Kakao App versions up to 2.17.4 Description: A vulnerability exists in the Kakao Hey Kakao App on Android, affecting an unknown functionality within the AndroidManifest.xml file of the com.kakao.i.connect component. This issue resul...
Information disclosure
The actionpuzzlefamily for Kakao aka com.com2us.actionpuzzlefamily.kakao.freefull.google.global.android.common application 1.4.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafte...