Shunsuke Kaneko

**Name of the Vulnerable Software and Affected Versions** Skylark App for Android versions 6.2.13 and earlier Skylark App for iOS versions 6.2.13 and earlier **Description** The issue is related to improper authorization in the handler for a custom URL scheme, allowing an attacker to lead a user to access an arbitrary website via another application installed on the user's device. **Recommendations** For Skylark App for Android versions 6.2.13 and earlier, update to a version later than 6.2.13 to resolve the issue. For Skylark App for iOS versions 6.2.13 and earlier, update to a version later than 6.2.13 to resolve the issue. As a temporary workaround, consider restricting the use of custom URL schemes in the Skylark App until a patch is available.