Vulnerability Details CVE-2023-47883
The com.altamirano.fabricio.tvbrowser TV browser application through 4.5.1 for Android is vulnerable to JavaScript code execution via an explicit intent due to an exposed MainActivity.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 76.6%
CVSS Severity
CVSS v3 Score 9.8
References
- https://github.com/actuator/com.altamirano.fabricio.tvbrowser/blob/main/AFC-POC.apk
- https://github.com/actuator/com.altamirano.fabricio.tvbrowser/blob/main/CWE-94.md
- https://github.com/actuator/com.altamirano.fabricio.tvbrowser/blob/main/TVBrowserDemo.gif
- https://github.com/actuator/com.altamirano.fabricio.tvbrowser/blob/main/AFC-POC.apk
- https://github.com/actuator/com.altamirano.fabricio.tvbrowser/blob/main/CWE-94.md
- https://github.com/actuator/com.altamirano.fabricio.tvbrowser/blob/main/TVBrowserDemo.gif
Products affected by CVE-2023-47883
-
cpe:2.3:a:vladymix:tv_browser:*