CVE-2023-3612

Posted on by admin

CVE-2023-3612

Govee Home app has unprotected access to WebView component which can be opened by any app on the device. By sending an URL to a specially crafted site, the attacker can execute JavaScript in context of WebView or steal sensitive user data by displaying phishing content.

Source: CVE-2023-3612

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다