CVE-2025-50861 Information
Aug 15, 2025
cve
Description
The Lotus Cars Android app (com.lotus.carsdomestic.intl) 1.2.8 contains an exported component PushDeepLinkActivity which is accessible without authentication via ADB or malicious apps. This poses a risk of unintended access to application internals and can cause denial of service or logic abuse.
Reference
http://comlotuscarsdomesticintl.com http://lotus.com https://github.com/JackSessions/Jack-Sessions-CVEs/tree/main
Related CNNVD
CNNVD-202508-1773 (Published: 2025-08-14)
Share on: