CVE-2021-20728

Summary

Improper access control vulnerability in goo blog App for Android ver.1.2.25 and earlier and for iOS ver.1.3.3 and earlier allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App.

Affected Software

VendorProductVersion RangeStatus
NTT Resonant Incorporatedgoo blog Appgoo blog App for Android ver.1.2.25 and earlier, and goo blog App for iOS ver.1.3.3 and earlieraffected

Weaknesses

  • Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References