CVE-2024-41918
CVE-2024-41918 affects the Rakuten Ichiba App for Android (≤12.4.0) and iOS (≤11.7.0). The root cause is improper authorization in the handler for the custom URL scheme (CWE-939), which can allow an arbitrary site to be opened in the app’s WebView via an Intent from another application, potential...