Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
NCSOFT Universe App com.ncsoft.universeapp AndroidManifest.xml improper export of android application components
Vulnerability Description
A vulnerability was identified in NCSOFT Universe App up to 1.3.0. Impacted is an unknown function of the file AndroidManifest.xml of the component com.ncsoft.universeapp. The manipulation leads to improper export of android application components. Local access is required to approach this attack. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
CWE-926
Vulnerability Title
NCSOFT Universe App 安全漏洞
Vulnerability Description
NCSOFT Universe App是韩国NCSOFT公司的一款手机游戏。 NCSOFT Universe App 1.3.0及之前版本存在安全漏洞,该漏洞源于文件AndroidManifest.xml中组件导出不当,可能导致本地攻击。
CVSS Information
N/A
Vulnerability Type
N/A