ByteOS Network

News App

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2025-8513

Assigner-VulDB

View Details

Assigner-VulDB

CVSS Score-4.8||MEDIUM

EPSS-0.01% / 1.45%

7 Day CHG~0.00%

Published-03 Aug, 2025 | 14:32

Updated-04 Aug, 2025 | 18:35

Caixin News App com.caixin.news AndroidManifest.xml improper export of android application components

A vulnerability, which was classified as problematic, was found in Caixin News App 8.0.1 on Android. Affected is an unknown function of the file AndroidManifest.xml of the component com.caixin.news. The manipulation leads to improper export of android application components. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Vendor-Caixin

Product-News App

CWE ID-CWE-926

Improper Export of Android Application Components

CVE-2025-7893

Assigner-VulDB

View Details

Assigner-VulDB

CVSS Score-4.8||MEDIUM

EPSS-0.01% / 2.07%

7 Day CHG~0.00%

Published-20 Jul, 2025 | 13:44

Updated-22 Jul, 2025 | 13:06

Foresight News App pro.foresightnews.appa AndroidManifest.xml improper export of android application components

A vulnerability classified as problematic was found in Foresight News App up to 2.6.4 on Android. This vulnerability affects unknown code of the file AndroidManifest.xml of the component pro.foresightnews.appa. The manipulation leads to improper export of android application components. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Vendor-Foresight

Product-News App

CWE ID-CWE-926

Improper Export of Android Application Components