Home / Vulnerability Database / Swift : Improper Authorization in Handler for Custom URL Scheme

Swift

Swift : Improper Authorization in Handler for Custom URL Scheme

Classification

OWASP ASVS

Access Control Access Control Access Control Access Control

CWE

CWE-862 CWE-939

CWE/SANS Top 25 2011

CWE-862

CWE/SANS Top 25 2021

CWE-862

Overview

The application allows to use URL patterns to regulate communication with other applications. In the case of iOS, this is the only way to do this. This can lead to dire consequences. Weaknesses are potentially dangerous functions, such as modifying files using the URL scheme.

References

CWE-939: Improper Authorization in Handler for Custom URL Scheme

LOW

Swift : Improper Authorization in Handler for Custom URL Scheme

Classification

Overview

References

DerScanner Severity Score

Do you want to fix Swift : Improper Authorization in Handler for Custom URL Scheme in your application?

See also

Swift : Nill password

Swift : Hardcoded salt

Swift : Undocumented feature: special account