{"id":8447,"date":"2025-07-20T09:47:17","date_gmt":"2025-07-20T09:47:17","guid":{"rendered":"http:\/\/localhost\/?p=8447"},"modified":"2025-07-20T09:47:17","modified_gmt":"2025-07-20T09:47:17","slug":"foresight-news-app-proforesightnewsappa-androidmanifestxml-improper-export-of-android-application-co","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=8447","title":{"rendered":"Foresight News App pro.foresightnews.appa AndroidManifest.xml improper export of android application components"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\nForesight News App pro.foresightnews.appa AndroidManifest.xml improper export of android application components<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2025-07-20T13:44:05.401Z<\/td>\n<\/tr>\n
Modified<\/th>\n2025-07-20T13:44:05.401Z<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\nForesight<\/td>\n<\/tr>\n
Product<\/th>\nNews App<\/td>\n<\/tr>\n
Version<\/th>\n2.6.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n
Base Score<\/th>\n4.8 (MEDIUM)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:4.0\/AV:L\/AC:L\/AT:N\/PR:L\/UI:N\/VC:L\/VI:L\/VA:L\/SC:N\/SI:N\/SA:N\/E:P<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n
AI Description<\/th>\nA vulnerability in the Foresight News App for Android (versions up to 2.6.4) allows improper export of application components, potentially enabling local attackers to access sensitive functionalities. The issue was disclosed publicly, but the vendor did not respond.<\/td>\n<\/tr>\n
AI Severity<\/th>\nMedium<\/td>\n<\/tr>\n
AI Vendor<\/th>\nForesight<\/td>\n<\/tr>\n
AI Product<\/th>\nForesight News App<\/td>\n<\/tr>\n
AI Version<\/th>\n2.6.0, 2.6.1, 2.6.2, 2.6.3, 2.6.4<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n