Unrated severityNVD Advisory· Published Jan 6, 2023· Updated Apr 9, 2025

CVE-2022-42979

Description

Information disclosure due to an insecure hostname validation in the RYDE application 5.8.43 for Android and iOS allows attackers to take over an account via a deep link.

Affected products

RYDE/RYDEdescription
RYDE/RYDEllm-create
Range: = 5.8.43

Patches

Vulnerability mechanics

References

medium.com/%40jalee0606/how-i-found-my-first-one-click-account-takeover-via-deeplink-in-ryde-5406010c36d8mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.019
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000