Vulnerabilities > CVE-2017-17553 - Unspecified vulnerability in Changyou Dolphin 12.0.2

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

changyou

NVD

Published: 2017-12-12

Updated: 2024-11-21

Summary

The Dolphin Browser for Android 12.0.2 suffers from an insecure parsing implementation of the Intent URI scheme. This vulnerability could allow attackers to abuse this implementation through a malicious Intent URI, in order to invoke private Activities within the Dolphin Browser.

Vulnerable Configurations

Part	Description	Count
Application	Changyou Changyou Dolphin 12.0.2	1

References

https://github.com/VerSprite/research/blob/master/advisories/VS-2017-002.md
https://github.com/VerSprite/research/blob/master/advisories/VS-2017-002.md