1.1.9

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

egostudiogroup

NVD

Published: 2023-04-14

Updated: 2023-04-21

Summary

An issue found in Ego Studio SuperClean v.1.1.9 and v.1.1.5 allows an attacker to gain privileges via the update_info field of the _default_.xml file.

Vulnerable Configurations

Part	Description	Count
Application	Egostudiogroup Egostudiogroup Superclean 1.1.5 Egostudiogroup Superclean 1.1.9	2

References

https://github.com/LianKee/SODA/blob/main/CVEs/CVE-2023-27651/CVE%20detail.md
https://apkpure.com/cn/super-clean-phone-cleaner/com.egostudio.clean/download
http://www.egostudiogroup.com/