Vulnerabilities > CVE-2023-51010 - Unspecified vulnerability in Qd-Metro Qingdao Metro 4.2.2

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

network

low complexity

qd-metro

NVD

Published: 2023-12-28

Updated: 2024-11-21

Summary

An issue in the export component AdSdkH5Activity of com.sdjictec.qdmetro v4.2.2 allows attackers to open a crafted URL without any filtering or checking.

Vulnerable Configurations

Part	Description	Count
Application	Qd-Metro QD Metro Qingdao Metro 4.2.2	1

References

https://github.com/firmianay/security-issues/tree/main/app/com.sdjictec.qdmetro
https://github.com/firmianay/security-issues/tree/main/app/com.sdjictec.qdmetro