| 标题 | Yeelink Yeelight 3.5.4 Task Hijacking |
|---|
| 描述 | Task Hijacking allows malicious apps to inherit permissions of vulnerable apps and is usually used for phishing login credentials of victims,its used by malicious actors to manipulate or take over tasks in Android, leading to significant vulnerabilities, This vulnerability applies to all Android versions before Android 11. The AndroidManifest.xml configuration needs to be modified to mitigate this attack. |
|---|
| 来源 | ⚠️ https://github.com/KMov-g/androidapps/blob/main/com.yeelight.cherry.md |
|---|
| 用户 | fxizenta (UID 28116) |
|---|
| 提交 | 2025-07-14 12時57分 (9 月前) |
|---|
| 管理 | 2025-07-25 20時57分 (11 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 317778 [Yeelink Yeelight App 直到 3.5.4 于 Android com.yeelight.cherry AndroidManifest.xml Local Privilege Escalation] |
|---|
| 积分 | 19 |
|---|