CVE-2022-4235

Name of the Vulnerable Software and Affected Versions RushBet version 2022.23.1-b490616d

Description The issue allows a remote attacker to steal customer accounts by utilizing a malicious application. This is due to the application exposing an activity and failing to properly validate the received data.

Recommendations For RushBet version 2022.23.1-b490616d, consider restricting access to the exposed activity until a proper validation mechanism is implemented to prevent malicious data reception. At the moment, there is no information about a newer version that contains a fix for this vulnerability.