{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-28T05:14:49.808","vulnerabilities":[{"cve":{"id":"CVE-2024-28745","sourceIdentifier":"vultures@jpcert.or.jp","published":"2024-03-18T04:15:09.987","lastModified":"2026-06-17T07:21:43.430","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Improper export of Android application components issue exists in 'ABEMA' App for Android prior to 10.65.0 allowing another app installed on the user's device to access an arbitrary URL on 'ABEMA' App for Android via Intent. If this vulnerability is exploited, an arbitrary website may be displayed on the app, and as a result, the user may become a victim of a phishing attack."},{"lang":"es","value":"Existe un problema de exportación incorrecta de los componentes de la aplicación de Android en la aplicación 'ABEMA' para Android anterior a 10.65.0, lo que permite que otra aplicación instalada en el dispositivo del usuario acceda a una URL arbitraria en la aplicación 'ABEMA' para Android a través de Intent. Si se explota esta vulnerabilidad, es posible que se muestre un sitio web arbitrario en la aplicación y, como resultado, el usuario puede convertirse en víctima de un ataque de phishing."}],"affected":[{"source":"vultures@jpcert.or.jp","affectedData":[{"vendor":"AbemaTV, Inc.","product":"'ABEMA' App for Android","versions":[{"version":"prior to 10.65.0","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N","baseScore":3.3,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":1.4}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2024-03-18T15:40:51.017658Z","id":"CVE-2024-28745","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-732"}]}],"references":[{"url":"https://jvn.jp/en/jp/JVN70640802/","source":"vultures@jpcert.or.jp"},{"url":"https://jvn.jp/en/jp/JVN70640802/","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}