Back to search
CVE-2021-20873
Published: Dec 28, 2021
Modified: Aug 3, 2024
PUBLISHED
Description
Yappli is an application development platform which provides the function to access a requested URL using Custom URL Scheme. When Android apps are developed with Yappli versions since v7.3.6 and prior to v9.30.0, they are vulnerable to improper authorization in Custom URL Scheme handler, and may be directed to unintended sites via a specially crafted URL.
| Vendor | Product | Versions |
|---|---|---|
Yappli, Inc. | Yappli | affected versions since v7.3.6 and prior to v9.30.0 |
References
https://support.yappli.co.jp/hc/ja/articles/4410249902745
x_refsource_MISC
https://jvn.jp/en/jp/JVN66422035/index.html
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now