Medium severity6.5NVD Advisory· Published Oct 24, 2022· Updated Jun 17, 2026
CVE-2022-41797
CVE-2022-41797
Description
Improper authorization in handler for custom URL scheme vulnerability in Lemon8 App for Android versions prior to 3.3.5 and Lemon8 App for iOS versions prior to 3.3.5 allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a phishing attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ByteDance K.K./Lemon8 App for Android and Lemon8 App for iOSv5Range: Lemon8 App for Android versions prior to 3.3.5 and Lemon8 App for iOS versions prior to 3.3.5
Patches
Vulnerability mechanics
References
3- apps.apple.com/jp/app/lemon8/id1498607143nvdProductThird Party Advisory
- jvn.jp/en/jp/JVN10921428/index.htmlnvdThird Party Advisory
- play.google.com/store/apps/detailsnvdProductThird Party Advisory
News mentions
0No linked articles in our index yet.