漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Moovit Bus & Public Transit App com.tranzmate improper authorization in handler for custom url scheme
Vulnerability Description
A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzmate. Executing a manipulation can lead to improper authorization in handler for custom url scheme. The attack can only be executed locally. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
自定义URL方案处理程序中的授权不正确
Vulnerability Title
Moovit Bus & Public Transit App 授权问题漏洞
Vulnerability Description
Bus & Public Transit App是Moovit公司的一款城市公共交通导航与出行规划应用。 Moovit Bus & Public Transit App 1.18版本存在授权问题漏洞,该漏洞源于自定义URL方案处理程序中的授权问题,可能导致本地攻击者执行未经授权的操作。
CVSS Information
N/A
Vulnerability Type
N/A