5 matches found
TikTok vulnerability could have allowed hijackers to take over accounts
Microsoft has released a detailed rundown of an issue, now fixed, which was potentially dangerous for users of TikTok. The problem, flagged as a "high-severity vulnerability" by Microsoft, required several steps chained together in order to function. Attackers making use of it could have...
Microsoft Discover Severe 'One-Click' Exploit for TikTok Android App
Microsoft on Wednesday disclosed details of a now-patched "high severity vulnerability" in the TikTok app for Android that could let attackers take over accounts when victims clicked on a malicious link. "Attackers could have leveraged the vulnerability to hijack an account without users' awarene...
Vulnerability in TikTok Android app could lead to one-click account hijacking
Microsoft discovered a high-severity vulnerability in the TikTok Android application, which could have allowed attackers to compromise users’ accounts with a single click. The vulnerability, which would have required several issues to be chained together to exploit, has been fixed and we did not...
Vulnerability in TikTok Android app could lead to one-click account hijacking
Microsoft discovered a high-severity vulnerability in the TikTok Android application, which could have allowed attackers to compromise users’ accounts with a single click. The vulnerability, which would have required several issues to be chained together to exploit, has been fixed and we did not...
CVE-2022-28799
CVE-2022-28799 affects the TikTok Android app prior to version 23.7.3. A crafted unvalidated deeplink could cause the app’s WebView (com.zhiliaoapp.musically) to load an arbitrary website, enabling an attached JavaScript interface to be exploited and potentially take over a user account. The root...