VulnerAlert



ANDROID
WEBSITE
05-09-2025 03:20

CVE-2025-41408 Vulnerabilidad documentada

5.3 MEDIUM
Tags
#android
#site
#web
#website
#improper
#authenticated
#arbitrary
#vulnerable
#remote
#phishing
#issue
#allow
#attack
#access
Descripción
Improper authorization in handler for custom URL scheme issue "Yahoo! Shopping" App Android versions prior to 14.15.0 allows a remote unauthenticated attacker may lead user access an arbitrary website on the vulnerable App. As result, become victim of phishing attack.
https://jvn.jp/en/jp/JVN35290164/
Referencia
Link externo
Ver detalles

Fuente
https://nvd.nist.gov/vuln/detail/CVE-2025-41408
Resultados similares
Coincidentes en almenos en 50% de los tags
04-09-2025 CVE-2025-48543
In multiple locations, there is a possible way to escape chrome sandbox to attack android syste...
Ver información
04-09-2025 CVE-2025-45805
In phpgurukul Doctor Appointment Management System 1.0, an authenticated doctor user can inject...
Ver información
Icons made by Freepik from www.flaticon.com
Este Proyecto fue cofinanciado por el Consejo Nacional de Ciencia y Tecnología (CONACYT) a través del PROINNOVA 2021/2023
Proyecto realizado por