Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Foresight News App pro.foresightnews.appa AndroidManifest.xml improper export of android application components
Vulnerability Description
A vulnerability classified as problematic was found in Foresight News App up to 2.6.4 on Android. This vulnerability affects unknown code of the file AndroidManifest.xml of the component pro.foresightnews.appa. The manipulation leads to improper export of android application components. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
CWE-926
Vulnerability Title
Foresight News App 安全漏洞
Vulnerability Description
Foresight News App是中国Foresight News公司的一款移动新闻聚合应用,提供实时全球新闻更新、个性化内容推荐、多媒体内容(如文章、视频和图像)浏览等功能。 Foresight News App 2.6.4及之前版本存在安全漏洞,该漏洞源于AndroidManifest.xml文件组件pro.foresightnews.appa导出不当。
CVSS Information
N/A
Vulnerability Type
N/A