Lucene search
K

5 matches found

Malwarebytes
Malwarebytes
added 2022/09/01 12:0 p.m.66 views

TikTok vulnerability could have allowed hijackers to take over accounts

Microsoft has released a detailed rundown of an issue, now fixed, which was potentially dangerous for users of TikTok. The problem, flagged as a "high-severity vulnerability" by Microsoft, required several steps chained together in order to function. Attackers making use of it could have...

6.8CVSS8.7AI score0.1553EPSS
Exploits0
The Hacker News
The Hacker News
added 2022/09/01 7:13 a.m.51 views

Microsoft Discover Severe 'One-Click' Exploit for TikTok Android App

Microsoft on Wednesday disclosed details of a now-patched "high severity vulnerability" in the TikTok app for Android that could let attackers take over accounts when victims clicked on a malicious link. "Attackers could have leveraged the vulnerability to hijack an account without users' awarene...

8.8CVSS8.6AI score0.1553EPSS
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/08/31 4:0 p.m.21 views

Vulnerability in TikTok Android app could lead to one-click account hijacking

Microsoft discovered a high-severity vulnerability in the TikTok Android application, which could have allowed attackers to compromise users’ accounts with a single click. The vulnerability, which would have required several issues to be chained together to exploit, has been fixed and we did not...

6.8CVSS8.8AI score0.1553EPSS
Exploits0
Microsoft Secure
Microsoft Secure
added 2022/08/31 4:0 p.m.82 views

Vulnerability in TikTok Android app could lead to one-click account hijacking

Microsoft discovered a high-severity vulnerability in the TikTok Android application, which could have allowed attackers to compromise users’ accounts with a single click. The vulnerability, which would have required several issues to be chained together to exploit, has been fixed and we did not...

6.8CVSS8.8AI score0.1553EPSS
Exploits0
CVE
CVE
added 2022/05/30 1:46 p.m.89 views

CVE-2022-28799

CVE-2022-28799 affects the TikTok Android app prior to version 23.7.3. A crafted unvalidated deeplink could cause the app’s WebView (com.zhiliaoapp.musically) to load an arbitrary website, enabling an attached JavaScript interface to be exploited and potentially take over a user account. The root...

8.8CVSS8.4AI score0.1553EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder