Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
QKSMS Backup File androidmanifest.xml backup
Vulnerability Description
A vulnerability was found in QKSMS up to 3.9.4 on Android. It has been classified as problematic. This affects an unknown part of the file androidmanifest.xml of the component Backup File Handler. The manipulation leads to exposure of backup file to an unauthorized control sphere. It is possible to launch the attack on the physical device. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-259611. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
将备份文件暴露给非授权控制范围
Vulnerability Title
QKSMS 安全漏洞
Vulnerability Description
QKSMS是Moez Bhatti个人开发者的一个 Android 上股票消息应用程序的开源替代品。 QKSMS 3.9.4及之前版本存在安全漏洞,该漏洞源于组件Backup File Handler的文件androidmanifest.xml存在安全漏洞。
CVSS Information
N/A
Vulnerability Type
N/A