CVE-2021-20733

Description

Improper authorization in handler for custom URL scheme vulnerability in あすけんダイエット (asken diet) for Android versions from v.3.0.0 to v.4.2.x allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App.

Affected products

• asken Inc. / あすけんダイエット (asken diet) for Androidversions from v.3.0.0 to v.4.2.x – versions from v.3.0.0 to v.4.2.x

References

• MISChttps://www.asken.jp/s/login/?to=/information
• MISChttps://jvn.jp/en/jp/JVN38034268/index.html