Microsoft disclosed the flaw in the Android apps deep link verification process, which has since been fixed.