Unrated severityNVD Advisory· Published Aug 1, 2019· Updated Sep 17, 2024

Happypoint mobile application information disclosure vulnerability

CVE-2019-9140

Description

When processing Deeplink scheme, Happypoint mobile app 6.3.19 and earlier versions doesn't check Deeplink URL correctly. This could lead to javascript code execution, url redirection, sensitive information disclosure. An attacker can exploit this issue by enticing an unsuspecting user to open a specific malicious URL.

Affected products

Spc Cloud/Happypoint Mobile Appv5
Range: 6.3.19

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.boho.or.kr/krcert/secNoticeView.domitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000