CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-49000
https://notcve.org/view.php?id=CVE-2023-49000
An issue in ArtistScope ArtisBrowser v.34.1.5 and before allows an attacker to bypass intended access restrictions via interaction with the com.artis.browser.IntentReceiverActivity component. Un problema en ArtistScope ArtisBrowser v.34.1.5 y anteriores permite a un atacante omitir las restricciones de acceso previstas mediante la interacción con el componente com.artis.browser.IntentReceiverActivity. An issue in ArtistScope ArtisBrowser v.34.1.5 and before allows an attacker to bypass intended access restrictions via interaction with the com.artis.browser.IntentReceiverActivity component. NOTE: this is disputed by the vendor, who indicates that ArtisBrowser 34 does not support CSS3. • https://github.com/actuator/com.artis.browser/blob/main/CWE-94.md https://github.com/actuator/cve/blob/main/CVE-2023-49000 https://github.com/advisories/GHSA-866h-q63m-66xm • CWE-94: Improper Control of Generation of Code ('Code Injection') •