Login Sign Up

CVE-2025-9677

5.3 MEDIUM

📋 TL;DR

This vulnerability allows local attackers to exploit improperly exported Android application components in Modo Legend of the Phoenix mobile game. The flaw enables unauthorized access to app components that should be protected. Only users running versions up to 1.0.5 on Android devices are affected.

💻 Affected Systems

Products:
  • Modo Legend of the Phoenix
Versions: up to 1.0.5
Operating Systems: Android
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects Android version of the game. Requires app to be installed and running.

📦 What is this software?

Legend Of The Phoenix by Modo

View all CVEs affecting Legend Of The Phoenix →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Local attackers could gain unauthorized access to sensitive app data, manipulate game state, or potentially escalate privileges within the app context.

🟠

Likely Case

Malicious apps on the same device could interact with the vulnerable app components to read/modify game data or perform unauthorized actions.

🟢

If Mitigated

With proper Android security controls and app sandboxing, impact is limited to the app's own data and permissions.

🌐 Internet-Facing: LOW - Attack requires local access to the device, not exploitable over network.
🏢 Internal Only: MEDIUM - Local attackers with physical or app-level access to device can exploit.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Exploit details publicly available on GitHub. Requires local access to device (malicious app or physical access).

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None available

Restart Required: No

Instructions:

No official patch available. Vendor did not respond to disclosure. Consider uninstalling the app until fixed.

🔧 Temporary Workarounds

Uninstall vulnerable app

android

Remove the vulnerable application from Android devices

adb uninstall com.duige.hzw.multilingual

Restrict app installation

android

Prevent installation of unknown apps that could exploit the vulnerability

Settings > Security > Unknown Sources (disable)

🧯 If You Can't Patch

  • Isolate device from sensitive data and networks
  • Monitor for suspicious app behavior or unexpected game state changes

🔍 How to Verify

Check if Vulnerable:

Check app version in Google Play Store or app settings. If version is 1.0.5 or lower, app is vulnerable.

Check Version:

adb shell dumpsys package com.duige.hzw.multilingual | grep versionName

Verify Fix Applied:

Verify app has been updated to version above 1.0.5 or has been removed from device.

📡 Detection & Monitoring

Log Indicators:

  • Unexpected intents or component access in Android logs
  • App crashes or unexpected behavior from Modo Legend of the Phoenix

Network Indicators:

  • None - local exploit only

SIEM Query:

Not applicable for local Android app vulnerability

📊 Metadata

CVE ID: CVE-2025-9677
CVSS v3 Score: 5.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-926
EPSS Score: 0.03% exploit probability (6.3th percentile)
Published: August 29, 2025
Last Updated: September 8, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-9677, you might also want to check these:

CVE-2025-15464 7.5

This vulnerability allows external applications to bypass security controls and directly launch Gmai...

Same vulnerability type (CWE-926)
CVE-2023-41960 7.1

This vulnerability allows unprivileged third-party Android apps to interact with an improperly secur...

Same vulnerability type (CWE-926)
CVE-2023-20962 5.5

This vulnerability in Android 13 allows malicious apps to start foreground activities from the backg...

Same vulnerability type (CWE-926)