PT-2023-22398 · Unknown · Story Saver For Instagram - Video Downloader

Nihan Bayrak

Publicado

2023-06-01

Atualizado

2025-01-09

CVE-2023-29748

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Story Saver for Instragram - Video Downloader version 1.0.6

Description The issue allows an attacker to inject a large amount of data into any SharedPreference file, which will be loaded into memory when the application is opened. This can cause the application to trigger an OOM error and crash at startup, resulting in a persistent denial of service.

Recommendations For version 1.0.6, consider restricting access to the SharedPreference file to prevent unauthorized modifications until a patch is available. As a temporary workaround, avoid using the method that provides access to modify the SharedPreference file to minimize the risk of exploitation.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2023-29748

Produtos afetados

Story Saver For Instagram - Video Downloader

PT-2023-22398 · Unknown · Story Saver For Instagram - Video Downloader

CVE-2023-29748

Identificadores relacionados

Produtos afetados

Referências · 8