CVE-2023-42471 - OpenCVE

The wave.ai.browser application through 1.0.35 for Android allows a remote attacker to execute arbitrary JavaScript code via a crafted intent. It contains a manifest entry that exports the wave.ai.browser.ui.splash.SplashScreen activity. This activity uses a WebView component to display web content and doesn't adequately validate or sanitize the URI or any extra data passed in the intent by a third party application (with no permissions).

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Wave-ai	Wave

Configuration 1 [-]

cpe:2.3:a:wave-ai:wave:*:*:*:*:*:android:*:*

References

Link	Resource
https://github.com/actuator/cve/blob/main/CVE-2023-42471	Third Party Advisory
https://github.com/actuator/wave.ai.browser/blob/main/CWE-94.md	Exploit
https://github.com/actuator/wave.ai.browser/blob/main/poc.apk	Exploit

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-09-11T00:00:00

Updated: 2023-09-12T21:45:43.636963

Reserved: 2023-09-11T00:00:00

Link: CVE-2023-42471

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-09-11T08:15:07.703

Modified: 2023-09-13T14:36:04.363

Link: CVE-2023-42471

JSON object: View

Redhat Information

No data.

CWE

CWE-94

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:wave-ai:wave:*:*:*:*:*:android:*:*", "matchCriteriaId": "A713BC34-4A7C-4404-930F-BDA0B899AB31", "versionEndIncluding": "1.0.35", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The wave.ai.browser application through 1.0.35 for Android allows a remote attacker to execute arbitrary JavaScript code via a crafted intent. It contains a manifest entry that exports the wave.ai.browser.ui.splash.SplashScreen activity. This activity uses a WebView component to display web content and doesn't adequately validate or sanitize the URI or any extra data passed in the intent by a third party application (with no permissions)."}, {"lang": "es", "value": "La aplicaci\u00f3n wave.ai.browser hasta la versi\u00f3n 1.0.35 para Android permite a un atacante remoto ejecutar c\u00f3digo JavaScript arbitrario mediante un intento manipulado. Contiene una entrada de manifiesto que exporta la actividad wave.ai.browser.ui.splash.SplashScreen. Esta actividad utiliza un componente WebView para mostrar contenido web y no valida ni sanitiza adecuadamente el URI ni ning\u00fan dato adicional pasado en la intenci\u00f3n por una aplicaci\u00f3n de terceros (sin permisos)."}], "id": "CVE-2023-42471", "lastModified": "2023-09-13T14:36:04.363", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-09-11T08:15:07.703", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/actuator/cve/blob/main/CVE-2023-42471"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "https://github.com/actuator/wave.ai.browser/blob/main/CWE-94.md"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "https://github.com/actuator/wave.ai.browser/blob/main/poc.apk"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}