Vulnerability in Oppo Battery App Allows Unauthorized Third-Party Provider Loading

Vulnerability in Oppo Battery App Allows Unauthorized Third-Party Provider Loading

CVE-2021-23243 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.

Learn more about our Web Application Penetration Testing UK.