CVE-2026-12065 | Groww Stock, Mutual Fund, Gold App up to 20260805 on Android WebView URL improper authorization in handler for custom url scheme

Inserito da Angelo Barbosa | Giu 12, 2026 | CVE

A vulnerability was found in Groww Stock, Mutual Fund, Gold App up to 20260805 on Android. It has been rated as problematic. This affects an unknown part of the component WebView URL Handler. The manipulation leads to improper authorization in handler for custom url scheme.

This vulnerability is traded as CVE-2026-12065. It is possible to launch the attack on the physical device. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure.

CVE-2026-12065 | Groww Stock, Mutual Fund, Gold App up to 20260805 on Android WebView URL improper authorization in handler for custom url scheme

Post correlati

VDB-250562 | ECshop 4.1.8 /admin/view_sendlist.php sql injection

CVE-2024-1112 | Angus Johnson Resource Hacker 3.6.0.92 filename memory corruption

CVE-2024-6000 | FooEvents for WooCommerce Plugin up to 1.19.20 on WordPress unrestricted upload

CVE-2024-25390 | RT-Thread up to 5.0.2 finsh/msh_file.c heap-based overflow (Issue 8286)