Sap: >> Emarsys Sdk Security Vulnerabilities
Due to lack of proper authorization checks in Emarsys SDK for Android, an attacker can call a particular activity and can forward himself web pages and/or deep links without any validation directly from the host application. On successful attack, an attacker could navigate to arbitrary URL including application deep links on the device.
CVSS Score
7.1
EPSS Score
0.0
Published
2023-12-12