3 matches found
CVE-2020-7705
The CVE-2020-7705 entry concerns MintegralAdSDK (iOS) with malicious functionality that tracks every opened URL and reports it to an external server, performing ad-attribution fraud even if ads are not served. It can remotely activate hooks on UIKit components (UIApplication, openURL, SKStoreProd...
CVE-2020-7744
CVE-2020-7744 affects all versions of the com.mintegral.msdk:alphab component in the Android Mintegral SDK. Connected sources describe a malicious module that monitors downloads from Google domains or Google apps and from APKs, then exfiltrates the captured data to Mintegral’s servers, continuing...
CVE-2020-7745
CVE-2020-7745 affects the MintegralAdSDK prior to 6.6.0.0, where the SDK includes malicious functionality acting as a backdoor that can allow remote code execution by Mintegral and its advertisers. The connected Snyk-derived documentation explicitly states the backdoor behavior and recommends upg...