Description
This affects the package MintegralAdSDK from 0.0.0. The SDK distributed by the company contains malicious functionality that tracks any URL opened by the app and reports it back to the company, along with performing advertisement attribution fraud. Mintegral can remotely activate hooks on the UIApplication, openURL, SKStoreProductViewController, loadProductWithParameters and NSURLProtocol methods along with anti-debug and proxy detection protection. If those hooks are active MintegralAdSDK sends obfuscated data about every opened URL in an application to their servers. Note that the malicious functionality is enabled even if the SDK was not enabled to serve ads.
References (3)
Core 3
Core References
Third Party Advisory x_refsource_misc
https://snyk.io/vuln/SNYK-COCOAPODS-MINTEGRALADSDK-598852
Third Party Advisory x_refsource_misc
https://snyk.io/blog/sourmint-malicious-code-ad-fraud-and-data-leak-in-ios/
Third Party Advisory x_refsource_misc
https://snyk.io/research/sour-mint-malicious-sdk/
Scores
CVSS v3
7.1
EPSS
0.0117
EPSS Percentile
63.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N
Details
CWE
CWE-1021
Status
published
Products (1)
mintegral/mintegraladsdk
0.0.0
Published
Aug 24, 2020
Tracked Since
Feb 18, 2026