CNNVD-202510-4215 Information

CNNVD ID

CNNVD-202510-4215

Related CVE

CVE-2025-61113

• CNNVD Published: 2025-10-30

Description (Chinese)

MOLE TalkTalk Android App是中国MOLE公司的一款聊天应用。 MOLE TalkTalk Android App 3.3.6版本存在安全漏洞，该漏洞源于多个API端点访问控制不当，攻击者可能通过修改请求参数获取敏感用户信息和私人组信息，可能导致隐私泄露和未经授权的资源访问。

Description (English)

Mole TalkTalk Android App is a chat application by MOLE. There is a security loophole in MOLE TalkTalk Android App 3.3.6, which stems from inadequate access controls at multiple API endpoints. The attackers may obtain sensitive user and private group information by modifying the request parameters, which may lead to privacy leaks and unauthorized resource access.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

MOLE

Published

2025-10-30

Last Modified

2026-02-24

References

https://kar1oz.notion.site/TalkTalk-2619a473ecb28072b600dfcc7791c9d2 https://access.redhat.com/security/cve/cve-2025-61113