Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Creality Cloud App com.cxsw.sdprinter AndroidManifest.xml improper export of android application components
Vulnerability Description
A flaw has been found in Creality Cloud App up to 6.1.0 on Android. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.cxsw.sdprinter. Executing manipulation can lead to improper export of android application components. It is possible to launch the attack on the local host. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
CWE-926
Vulnerability Title
Creality Cloud App 安全漏洞
Vulnerability Description
Creality Cloud App是中国创想三维(Creality)公司的一个3D打印移动应用。 Creality Cloud App 6.1.0及之前版本存在安全漏洞,该漏洞源于文件AndroidManifest.xml中的组件com.cxsw.sdprinter存在不当导出,可能导致本地主机攻击。
CVSS Information
N/A
Vulnerability Type
N/A