Search

Find a vulnerability

Search criteria

    4 vulnerabilities found for Cybozu Live for Android by Cybozu, Inc.

    JVNDB-2013-000060

    Vulnerability from jvndb - Published: 2013-06-18 15:20 - Updated:2013-06-26 14:43
    Severity
    N/A (UNKNOWN) - -
    Summary
    Cybozu Live for Android vulnerable in the WebView class
    Details
    Cybozu Live for Android is a client software for Cybozu Live. Cybozu Live for Android contains a vulnerability in the WebView class. Note that this vulnerability is a regression in version 2.0.0 of the issue in JVN#77393797. Gaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to the developer. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    Impacted products
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000060.html",
      "dc:date": "2013-06-26T14:43+09:00",
      "dcterms:issued": "2013-06-18T15:20+09:00",
      "dcterms:modified": "2013-06-26T14:43+09:00",
      "description": "Cybozu Live for Android is a client software for Cybozu Live. Cybozu Live for Android contains a vulnerability in the WebView class.\r\n\r\nNote that this vulnerability is a regression in version 2.0.0 of the issue in JVN#77393797.\r\n\r\nGaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to the developer.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000060.html",
      "sec:cpe": {
        "#text": "cpe:/a:cybozu:cybozu_live_for_android",
        "@product": "Cybozu Live for Android",
        "@vendor": "Cybozu, Inc.",
        "@version": "2.2"
      },
      "sec:cvss": {
        "@score": "2.6",
        "@severity": "Low",
        "@type": "Base",
        "@vector": "AV:N/AC:H/Au:N/C:P/I:N/A:N",
        "@version": "2.0"
      },
      "sec:identifier": "JVNDB-2013-000060",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/jp/JVN19740283/",
          "@id": "JVN#19740283",
          "@source": "JVN"
        },
        {
          "#text": "https://jvn.jp/en/jp/JVN77393797/",
          "@id": "JVN#77393797",
          "@source": "JVN"
        },
        {
          "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3647",
          "@id": "CVE-2013-3647",
          "@source": "CVE"
        },
        {
          "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-3647",
          "@id": "CVE-2013-3647",
          "@source": "NVD"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-Other",
          "@title": "No Mapping(CWE-Other)"
        }
      ],
      "title": "Cybozu Live for Android vulnerable in the WebView class"
    }

    JVNDB-2013-000059

    Vulnerability from jvndb - Published: 2013-06-18 15:19 - Updated:2013-06-26 14:46
    Severity
    N/A (UNKNOWN) - -
    Summary
    Cybozu Live for Android vulnerable to arbitrary Java method execution
    Details
    Cybozu Live for Android is a client software for Cybozu Live. Cybozu Live for Android contains an arbitrary Java method execution vulnerability. Note that this vulnerability is a regression in version 2.0.0 of the issue in JVN#23009798. Gaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to the developer. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    Impacted products
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000059.html",
      "dc:date": "2013-06-26T14:46+09:00",
      "dcterms:issued": "2013-06-18T15:19+09:00",
      "dcterms:modified": "2013-06-26T14:46+09:00",
      "description": "Cybozu Live for Android is a client software for Cybozu Live. Cybozu Live for Android contains an arbitrary Java method execution vulnerability.\r\n\r\nNote that this vulnerability is a regression in version 2.0.0 of the issue in JVN#23009798. \r\n\r\nGaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to the developer.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000059.html",
      "sec:cpe": {
        "#text": "cpe:/a:cybozu:cybozu_live_for_android",
        "@product": "Cybozu Live for Android",
        "@vendor": "Cybozu, Inc.",
        "@version": "2.2"
      },
      "sec:cvss": {
        "@score": "5.8",
        "@severity": "Medium",
        "@type": "Base",
        "@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
        "@version": "2.0"
      },
      "sec:identifier": "JVNDB-2013-000059",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/jp/JVN63428218/",
          "@id": "JVN#63428218",
          "@source": "JVN"
        },
        {
          "#text": "https://jvn.jp/en/jp/JVN23009798/",
          "@id": "JVN#23009798",
          "@source": "JVN"
        },
        {
          "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3646",
          "@id": "CVE-2013-3646",
          "@source": "CVE"
        },
        {
          "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-3646",
          "@id": "CVE-2013-3646",
          "@source": "NVD"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-DesignError",
          "@title": "No Mapping(CWE-DesignError)"
        }
      ],
      "title": "Cybozu Live for Android vulnerable to arbitrary Java method execution"
    }

    JVNDB-2012-000082

    Vulnerability from jvndb - Published: 2012-09-03 10:41 - Updated:2012-09-03 10:41
    Severity
    N/A (UNKNOWN) - -
    Summary
    Cybozu Live for Android vulnerable in the WebView class
    Details
    Cybozu Live for Android contains a vulnerability in the WebView class. Cybozu Live for Android is a client software for Cybozu Live. Cybozu Live for Android contains a vulnerability in the WebView class. Gaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to JPCERT/CC via the developer. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    Impacted products
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000082.html",
      "dc:date": "2012-09-03T10:41+09:00",
      "dcterms:issued": "2012-09-03T10:41+09:00",
      "dcterms:modified": "2012-09-03T10:41+09:00",
      "description": "Cybozu Live for Android contains a vulnerability in the WebView class.\r\n\r\nCybozu Live for Android is a client software for Cybozu Live. Cybozu Live for Android contains a vulnerability in the WebView class.\r\n\r\nGaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to JPCERT/CC via the developer.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000082.html",
      "sec:cpe": {
        "#text": "cpe:/a:cybozu:cybozu_live_for_android",
        "@product": "Cybozu Live for Android",
        "@vendor": "Cybozu, Inc.",
        "@version": "2.2"
      },
      "sec:cvss": {
        "@score": "2.6",
        "@severity": "Low",
        "@type": "Base",
        "@vector": "AV:N/AC:H/Au:N/C:N/I:P/A:N",
        "@version": "2.0"
      },
      "sec:identifier": "JVNDB-2012-000082",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/jp/JVN77393797/index.html",
          "@id": "JVN#77393797",
          "@source": "JVN"
        },
        {
          "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4009",
          "@id": "CVE-2012-4009",
          "@source": "CVE"
        },
        {
          "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4009",
          "@id": "CVE-2012-4009",
          "@source": "NVD"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-Other",
          "@title": "No Mapping(CWE-Other)"
        }
      ],
      "title": "Cybozu Live for Android vulnerable in the WebView class"
    }

    JVNDB-2012-000081

    Vulnerability from jvndb - Published: 2012-09-03 10:34 - Updated:2012-09-03 10:34
    Severity
    N/A (UNKNOWN) - -
    Summary
    Cybozu Live for Android vulnerable to arbitrary Java method execution
    Details
    Cybozu Live for Android contains an arbitrary Java method execution vulnerability. Cybozu Live for Android is a client software for Cybozu Live. Cybozu Live for Android contains an arbitrary Java method execution vulnerability. Gaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to JPCERT/CC via the developer. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    Impacted products
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000081.html",
      "dc:date": "2012-09-03T10:34+09:00",
      "dcterms:issued": "2012-09-03T10:34+09:00",
      "dcterms:modified": "2012-09-03T10:34+09:00",
      "description": "Cybozu Live for Android contains an arbitrary Java method execution vulnerability.\r\n\r\nCybozu Live for Android is a client software for Cybozu Live. Cybozu Live for Android contains an arbitrary Java method execution vulnerability.\r\n\r\nGaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to JPCERT/CC via the developer.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000081.html",
      "sec:cpe": {
        "#text": "cpe:/a:cybozu:cybozu_live_for_android",
        "@product": "Cybozu Live for Android",
        "@vendor": "Cybozu, Inc.",
        "@version": "2.2"
      },
      "sec:cvss": {
        "@score": "5.8",
        "@severity": "Medium",
        "@type": "Base",
        "@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
        "@version": "2.0"
      },
      "sec:identifier": "JVNDB-2012-000081",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/jp/JVN23009798/index.html",
          "@id": "JVN#23009798",
          "@source": "JVN"
        },
        {
          "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4008",
          "@id": "CVE-2012-4008",
          "@source": "CVE"
        },
        {
          "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-4008",
          "@id": "CVE-2012-4008",
          "@source": "NVD"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-DesignError",
          "@title": "No Mapping(CWE-DesignError)"
        }
      ],
      "title": "Cybozu Live for Android vulnerable to arbitrary Java method execution"
    }