Ghostwire

CVE-2026-22077: OPPO Wallet APP contains a trusted domain validation flaw that allows attackers to bypass protected interface access...

MEDIUM CVSS 0.0

Published: April 27, 2026 | Last Modified: April 27, 2026

Description

OPPO Wallet APP contains a trusted domain validation flaw that allows attackers to bypass protected interface access restrictions, which may lead to account token hijacking and sensitive information disclosure.

Ghostwire Analysis — What This Means Practically

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

Security Coverage (1 articles)

References

security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-2048652556296790016
www.tenable.com/cve/CVE-2026-22077
www.cnnvd.org.cn/home/globalSearch?keyword=CVE-2026-22077
nvd.nist.gov/vuln/detail/CVE-2026-22077