CVE-2023-29723

Name of the Vulnerable Software and Affected Versions Glitter Unicorn Wallpaper app for Android versions 7.0 through 8.0

Description The issue allows unauthorized applications to inject data into the database that stores user personal preferences, which can be loaded into memory and used when the application is opened. By injecting data, an attacker can force the application to load malicious image URLs and display them in the UI. As the amount of data increases, it will eventually cause the application to trigger an out-of-memory (OOM) error and crash, resulting in a persistent denial of service attack.

Recommendations For Android versions 7.0 through 8.0, consider restricting access to the database that records user personal preferences to prevent unauthorized data injection until a patch is available. As a temporary workaround, avoid using the Glitter Unicorn Wallpaper app to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.