Vulnerability in TikTok Android app could lead to one-click account hijacking - Microsoft Security Blog
Tags
attack-pattern: Data Domains - T1583.001 Domains - T1584.001 Javascript - T1059.007 Malicious Link - T1204.001 Server - T1583.004 Server - T1584.004 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID 71041176-5e15-4639-9a4e-1c1845e88d6a
Fingerprint ad8bc5092e35ef8d
Analysis status DONE
Considered CTI value 0
Text language
Published Aug. 31, 2022, 9 a.m.
Added to db Sept. 11, 2022, 12:47 p.m.
Last updated Dec. 23, 2024, 6:10 p.m.
Headline Vulnerability in TikTok Android app could lead to one-click account hijacking
Title Vulnerability in TikTok Android app could lead to one-click account hijacking - Microsoft Security Blog
Detected Hints/Tags/Attributes 56/1/13
Source URLs
Redirection Url
Details Source https://www.microsoft.com/security/blog/2022/08/31/vulnerability-in-tiktok-android-app-could-lead-to-one-click-account-hijacking/
URL Provider
Details Provider Source level domain
Details microsoft.com www.microsoft.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 173 Microsoft Security Blog https://microsoft.com/security/blog/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 4 
cve-2022-28799
Details Domain 5 
com.ss.android
Details Domain 941 
example.com
Details Domain 224 
www.example.com
Details Domain 6 
domain.name
Details Domain 12 
tiktok.com
Details Domain 25 
www.tiktok.com
Details Domain 7 
www.attacker.com
Details Url 1 
http://www.example.com/gizmos.
Details Url 1 
https://domain.name/.well
Details Url 1 
https://m.tiktok.com/redirect
Details Url 10 
https://www.tiktok.com
Details Url 1 
https://www.attacker.com/poc