Due to a misconfiguration in the manifest file of the WARP client for Android, it was possible to a perform a task hijacking attack. An attacker could create a malicious mobile application which could hijack legitimate app and steal potentially sensitive information when installed on the victim's device.
References
Link | Resource |
---|---|
https://github.com/cloudflare/advisories/security/advisories/GHSA-35f7-fqrc-4hhj | Product Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: cloudflare
Published: 2023-01-11T16:32:28.382Z
Updated: 2023-01-11T16:33:18.738Z
Reserved: 2022-12-13T18:49:13.020Z
Link: CVE-2022-4457
JSON object: View
NVD Information
Status : Modified
Published: 2023-01-11T17:15:09.470
Modified: 2023-11-07T03:57:52.070
Link: CVE-2022-4457
JSON object: View
Redhat Information
No data.