Vulnerability in WARP Mobile Client (<=6.29) for Android Allows Malicious App to Manipulate Task Behavior

Vulnerability in WARP Mobile Client (<=6.29) for Android Allows Malicious App to Manipulate Task Behavior

CVE-2023-0238 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Due to lack of a security policy, the WARP Mobile Client (<=6.29) for Android was susceptible to this vulnerability which allowed a malicious app installed on a victim's device to exploit a peculiarity in an Android function, wherein under certain conditions, the malicious app could dictate the task behaviour of the WARP app.

Learn more about our Cis Benchmark Audit For Google Android.