Name of the Vulnerable Software and Affected Versions:

TVB Big Big Shop App version 2.9.0

Description:

A problematic vulnerability has been identified in the TVB Big Big Shop App for Android. The issue involves improper export of Android application components due to unknown processing of the `AndroidManifest.xml` file within the `hk.com.tvb.bigbigshop` component. Exploitation requires local access. The exploit for this issue has been publicly disclosed. The vendor was informed of the disclosure but did not respond.

Recommendations:

Update to a newer version of the TVB Big Big Shop App when available.