CVE-2018-5327

EUVD-2018-17106
Cheetah Mobile Armorfly Browser & Downloader 1.1.05.0010, when installed on unspecified "older" Android platforms, allows Same Origin Policy Bypass.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 52%
Affected Products (NVD)
VendorProductVersion
cmcmarmorfly_browser_\&_downloader
1.1.05.0010
𝑥
= Vulnerable software versions
References
https://twitter.com/mishradhiraj_/status/950975902892150785
https://twitter.com/mishradhiraj_/status/950975902892150785