Critical severity9.8NVD Advisory· Published Dec 27, 2023· Updated Jun 17, 2026
CVE-2023-43955
CVE-2023-43955
Description
The com.phlox.tvwebbrowser TV Bro application through 2.0.0 for Android mishandles external intents through WebView. This allows attackers to execute arbitrary code, create arbitrary files. and perform arbitrary downloads via JavaScript that uses takeBlobDownloadData.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- TV Bro/TV Brodescription
Patches
Vulnerability mechanics
References
3- github.com/actuator/com.phlox.tvwebbrowser/blob/main/CWE-94.mdnvdExploitThird Party Advisory
- github.com/actuator/com.phlox.tvwebbrowser/blob/main/poc.apknvdExploitThird Party Advisory
- github.com/truefedex/tv-bro/pull/182nvdIssue Tracking
News mentions
0No linked articles in our index yet.