Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-44965

Malicious code in bioql PyPI...

6.5CVSS5.3AI score0.00858EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 11:47 p.m.6 views

CVE-2022-41797

Improper authorization in handler for custom URL scheme vulnerability in Lemon8 App for Android versions prior to 3.3.5 and Lemon8 App for iOS versions prior to 3.3.5 allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a...

6.5CVSS6.7AI score0.00858EPSS
Exploits0References1
NVD
NVD
added 2022/10/24 2:15 p.m.25 views

CVE-2022-41797

Improper authorization in handler for custom URL scheme vulnerability in Lemon8 App for Android versions prior to 3.3.5 and Lemon8 App for iOS versions prior to 3.3.5 allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a...

6.5CVSS0.00858EPSS
Exploits0References3
OSV
OSV
added 2022/10/24 2:15 p.m.3 views

CVE-2022-41797

Improper authorization in handler for custom URL scheme vulnerability in Lemon8 App for Android versions prior to 3.3.5 and Lemon8 App for iOS versions prior to 3.3.5 allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a...

6.5CVSS5.9AI score0.00858EPSS
Exploits0References3
Prion
Prion
added 2022/10/24 2:15 p.m.20 views

Authorization

Improper authorization in handler for custom URL scheme vulnerability in Lemon8 App for Android versions prior to 3.3.5 and Lemon8 App for iOS versions prior to 3.3.5 allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a...

4.3CVSS6.2AI score0.00858EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/24 12:0 a.m.5 views

CVE-2022-41797

Improper authorization in handler for custom URL scheme vulnerability in Lemon8 App for Android versions prior to 3.3.5 and Lemon8 App for iOS versions prior to 3.3.5 allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a...

6.2AI score0.00858EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/10/24 12:0 a.m.32 views

CVE-2022-41797

Improper authorization in handler for custom URL scheme vulnerability in Lemon8 App for Android versions prior to 3.3.5 and Lemon8 App for iOS versions prior to 3.3.5 allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a...

6.4AI score0.00858EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/10/24 12:0 a.m.3 views

PT-2022-26076 · Unknown · Lemon8 App For Android +1

Name of the Vulnerable Software and Affected Versions: Lemon8 App for Android versions prior to 3.3.5 Lemon8 App for iOS versions prior to 3.3.5 Description: The issue is related to improper authorization in the handler for a custom URL scheme, allowing a remote attacker to lead a user to access ...

6.5CVSS6.2AI score0.00858EPSS
Exploits0References6
CVE
CVE
added 2022/10/24 12:0 a.m.66 views

CVE-2022-41797

The CVE-2022-41797 entry describes an improper authorization flaw in Lemon8 App’s handler for a custom URL scheme.Affected software: Lemon8 App for Android and iOS (prior to version 3.3.5).Cause: the app fails to restrict URL scheme access, enabling a remote attacker to direct a user to an arbitr...

6.5CVSS6.2AI score0.00858EPSS
Exploits0References3Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2022/10/19 5:8 a.m.2 views

Lemon8 App fails to restrict access permissions

Overview Lemon8 by ByteDance K.K. provides the function to access a requested URL using Custom URL Scheme/DeepLink. The App does not restrict access to the function properly CWE-939 which may be exploited to direct the App to access any sites. Ryo Sato of BroadBand Security,Inc. reported this...

6.5CVSS6.6AI score0.00858EPSS
Exploits0References6
CNNVD
CNNVD
added 2022/10/19 12:0 a.m.2 views

ByteDance Lemon8 安全漏洞

ByteDance Lemon8 is a lifestyle messaging application for young people from China's ByteDance. A security vulnerability exists in ByteDance Lemon8 versions prior to 3.3.5. The vulnerability stems from the fact that it does not have reasonably restricted access privileges, which could allow a remo...

6.5CVSS5.9AI score0.00858EPSS
Exploits0References6
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2022/10/19 12:0 a.m.42 views

JVN#10921428: Lemon8 App fails to restrict access permissions

Lemon8 by ByteDance K.K. provides the function to access a requested URL using Custom URL Scheme/DeepLink. The App does not restrict access to the function properly CWE-939 which may be exploited to direct the App to access any sites. Impact A remote attacker may lead a user to access an arbitrar...

6.5CVSS6.2AI score0.00858EPSS
Exploits0
Rows per page
Query Builder