GSD-2021-1000040

Source
https://data.gsd.id/GSD-2021-1000040
Import Source
https://github.com/cloudsecurityalliance/gsd-database/blob/main/2021/1000xxx/GSD-2021-1000040.json
JSON Data
https://api.osv.dev/v1/vulns/GSD-2021-1000040
Withdrawn
2023-03-14T07:04:18.324904Z
Published
2021-05-31T15:39:45.031586Z
Modified
2023-03-14T07:04:18.324904Z
Summary
update freeze attack in DroidScript version all versions
Details

DroidScript, all versions, were removed from the Google store after allegations of malware and ad fraud surfaced from Google. It is reported that ad clicking activity did take place but that it was not as a direct result from DriodScript themselves. However due to the removal of DroidScript it is unlikely that many DroidScript based applications will receive security updates, creating a significant vulnerability (effectively an update freeze attack).

References

Affected packages