CVE-2023-40530

Name of the Vulnerable Software and Affected Versions Skylark App for Android versions 6.2.13 and earlier Skylark App for iOS versions 6.2.13 and earlier

Description The issue is related to improper authorization in the handler for a custom URL scheme, allowing an attacker to lead a user to access an arbitrary website via another application installed on the user's device.

Recommendations For Skylark App for Android versions 6.2.13 and earlier, update to a version later than 6.2.13 to resolve the issue. For Skylark App for iOS versions 6.2.13 and earlier, update to a version later than 6.2.13 to resolve the issue. As a temporary workaround, consider restricting the use of custom URL schemes in the Skylark App until a patch is available.