Manifest File Misconfiguration Vulnerability in WARP Client for Android Allows Task Hijacking

Manifest File Misconfiguration Vulnerability in WARP Client for Android Allows Task Hijacking

CVE-2022-4457 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Due to a misconfiguration in the manifest file of the WARP client for Android, it was possible to a perform a task hijacking attack. An attacker could create a malicious mobile application which could hijack legitimate app and steal potentially sensitive information when installed on the victim's device.

Learn more about our Cis Benchmark Audit For Google Android.