PT-2025-38587 · Webull · Webull Investing & Trading App
Fxizenta
·
Published
2025-09-19
·
Updated
2025-09-19
·
CVE-2025-10721
CVSS v3.1
5.3
Medium
| AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
Webull Investing & Trading App version 11.2.5.63
Description
A vulnerability exists in Webull Investing & Trading App that causes improper export of Android application components due to manipulation of unknown code within the AndroidManifest.xml file. This issue can only be exploited locally. The exploit has been publicly disclosed, and the vendor was notified but did not respond.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Webull Investing & Trading App