CVE-2023-47883 Information

Description

The com.altamirano.fabricio.tvbrowser TV browser application through 4.5.1 for Android is vulnerable to JavaScript code execution via an explicit intent due to an exposed MainActivity.

Reference

https://github.com/actuator/com.altamirano.fabricio.tvbrowser/blob/main/CWE-94.md https://github.com/actuator/com.altamirano.fabricio.tvbrowser/blob/main/AFC-POC.apk https://github.com/actuator/com.altamirano.fabricio.tvbrowser/blob/main/TVBrowserDemo.gif