CVE-2024-28745

Name of the Vulnerable Software and Affected Versions ABEMA App for Android versions prior to 10.65.0

Description The issue exists due to the improper export of Android application components, allowing another app installed on the user's device to access an arbitrary URL on the ABEMA App for Android via Intent. If exploited, an arbitrary website may be displayed on the app, potentially leading to phishing attacks.

Recommendations For versions prior to 10.65.0, update to version 10.65.0 or later to resolve the issue. As a temporary workaround, consider restricting the use of Intents to minimize the risk of exploitation.