CVE-2024-34405: Code Injection

Q: What is the severity of CVE-2024-34405?

CVE-2024-34405 is rated as a high severity vulnerability due to improper deep link validation in the affected software.

Q: How do I fix CVE-2024-34405?

To resolve CVE-2024-34405, update the McAfee Security: Antivirus VPN for Android app to version 8.3.0 or later.

Q: What does CVE-2024-34405 affect?

CVE-2024-34405 affects McAfee Security: Antivirus VPN for Android versions prior to 8.3.0.

Q: What could an attacker do with CVE-2024-34405?

An attacker could exploit CVE-2024-34405 to launch arbitrary URLs within the affected application.

Q: Is there any workaround for CVE-2024-34405?

There are no official workarounds for CVE-2024-34405; updating to the latest version is recommended.

Published Jun 11, 2024

Updated

Improper deep link validation in McAfee Security: Antivirus VPN for Android before 8.3.0 could allow an attacker to launch an arbitrary URL within the app.

Affected Software

1 affected component

McAfee Antivirus VPN for Android<8.3.0

Event History

Jun 11, 2024

CVE Published

via MITRE·12:00 AM

Data Sourced

via MITRE·12:00 AM

Description

Data Sourced

via NVD·07:16 PM

DescriptionSeverityWeakness

Frequently Asked Questions

What is the severity of CVE-2024-34405?

CVE-2024-34405 is rated as a high severity vulnerability due to improper deep link validation in the affected software.

How do I fix CVE-2024-34405?

To resolve CVE-2024-34405, update the McAfee Security: Antivirus VPN for Android app to version 8.3.0 or later.

What does CVE-2024-34405 affect?

CVE-2024-34405 affects McAfee Security: Antivirus VPN for Android versions prior to 8.3.0.

What could an attacker do with CVE-2024-34405?

An attacker could exploit CVE-2024-34405 to launch arbitrary URLs within the affected application.

Is there any workaround for CVE-2024-34405?

There are no official workarounds for CVE-2024-34405; updating to the latest version is recommended.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

CVE-2024-34405 - Code Injection - SecAlerts