SKTLab Mukbee App com.dw.android.mukbee AndroidManifest.xml improper export of android application...

4.8 / 10

MEDIUM

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was detected in SKTLab Mukbee App 1.01.196 on Android. This affects an unknown function of the file AndroidManifest.xml of the component com.dw.android.mukbee. The manipulation results in improper export of android application components. The attack must be initiated from a local position. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Basic Information

ID CVE-2025-10722

Source VulDB

Published Sep 19, 2025 at 17:32

Affected Product

Vendor SKTLab

Product Mukbee App

Version 1.01.196

Affected Versions SKTLab Mukbee App 1.01.196

CWE Classification

CWE-926

References

{
    "lastseen": "",
    "description": "A vulnerability was detected in SKTLab Mukbee App 1.01.196 on Android. This affects an unknown function of the file AndroidManifest.xml of the component com.dw.android.mukbee. The manipulation results in improper export of android application components. The attack must be initiated from a local position. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.",
    "published": "2025-09-19T17:32:10.026Z",
    "modified": "2025-09-19T17:32:10.026Z",
    "type": "cve",
    "title": "SKTLab Mukbee App com.dw.android.mukbee AndroidManifest.xml improper export of android application components",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.325015\nhttps://vuldb.com/?ctiid.325015\nhttps://vuldb.com/?submit.645019\nhttps://github.com/KMov-g/androidapps/blob/main/com.dw.android.mukbee.md\nhttps://github.com/KMov-g/androidapps/blob/main/com.dw.android.mukbee.md#steps-to-reproduce",
    "id": "CVE-2025-10722",
    "bulletinFamily": "",
    "cwe": [
        "CWE-926"
    ],
    "cvelist": null,
    "sourceData": "SKTLab Mukbee App 1.01.196",
    "sourceHref": "",
    "cvss": {
        "score": 4.8,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Mukbee App",
    "version": "1.01.196",
    "vendor": "SKTLab",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

SKTLab Mukbee App com.dw.android.mukbee AndroidManifest.xml improper export of android application components_CVE-2025-10722