Vulnerabilities > SAP > Emarsys SDK

DATE CVE VULNERABILITY TITLE RISK
2023-12-12 CVE-2023-6542 Incorrect Authorization vulnerability in SAP Emarsys SDK 3.6.2
Due to lack of proper authorization checks in Emarsys SDK for Android, an attacker can call a particular activity and can forward himself web pages and/or deep links without any validation directly from the host application.
local
low complexity
sap CWE-863
7.1