CVE-2019-8791

Summary

An issue existed in the parsing of URL schemes. This issue was addressed with improved URL validation. This issue is fixed in Shazam Android App Version 9.25.0, Shazam iOS App Version 12.11.0. Processing a maliciously crafted URL may lead to an open redirect.

Affected Software

VendorProductVersion RangeStatus
AppleShazam-Androidunspecified < Shazam Android App Version 9.25.0affected
AppleShazam-iOSunspecified < Shazam iOS App Version 12.11.0affected

Weaknesses

  • Processing a maliciously crafted URL may lead to an open redirect

ADP Enrichment

CVE Program Container

Additional References

References