CVE-2023-27653

Published: Apr 14, 2023Modified: Feb 10, 2025

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

An issue found in WHOv.1.0.28, v.1.0.30, v.1.0.32 allows an attacker to cause a denial of service via the SharedPreference files.

Affected (3)

Products: Whoapp: Who

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Whoapp Who	Version 1.0.28
Whoapp Who	Version 1.0.30
Whoapp Who	Version 1.0.32

Related CWEs

Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References (6)

https://github.com/LianKee/SODA/blob/main/CVEs/CVE-2023-27653/CVE%20detail.md

Source: cve@mitre.org

ExploitThird Party Advisory

https://play.google.com/store/apps/details?id=com.scorp.who

Source: cve@mitre.org

Product

https://www.whoapp.live/

Source: cve@mitre.org

Product

https://github.com/LianKee/SODA/blob/main/CVEs/CVE-2023-27653/CVE%20detail.md

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://play.google.com/store/apps/details?id=com.scorp.who

Source: af854a3a-2127-422b-91ae-364da2661108

Product

https://www.whoapp.live/

Source: af854a3a-2127-422b-91ae-364da2661108

Product

Timeline

No history available yet.