Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

2 vulnerabilities found for Research Artisan Lite by Research Artisan Project

JVNDB-2015-000105

Vulnerability from jvndb - Published: 2015-07-24 14:46 - Updated:2015-07-28 17:22
Severity ?
N/A (UNKNOWN) - -
Summary
Research Artisan Lite does not properly perform authentication
Details
Research Artisan Lite provided by Research Artisan Project is an access analysis tool. Research Artisan Lite does not properly perform authentication (CWE-592). Gen Sato of TRADE WORKS Co.,Ltd. Security Dept. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
Impacted products
Show details on JVN DB website
To clipboard 

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000105.html",
  "dc:date": "2015-07-28T17:22+09:00",
  "dcterms:issued": "2015-07-24T14:46+09:00",
  "dcterms:modified": "2015-07-28T17:22+09:00",
  "description": "Research Artisan Lite provided by Research Artisan Project is an access analysis tool. Research Artisan Lite does not properly perform authentication (CWE-592).\r\n\r\nGen Sato of TRADE WORKS Co.,Ltd. Security Dept. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000105.html",
  "sec:cpe": {
    "#text": "cpe:/a:research-artisan:research_artisan_lite",
    "@product": "Research Artisan Lite",
    "@vendor": "Research Artisan Project",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "5.0",
    "@severity": "Medium",
    "@type": "Base",
    "@vector": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2015-000105",
  "sec:references": [
    {
      "#text": "https://jvn.jp/en/jp/JVN10559378/index.html",
      "@id": "JVN#10559378",
      "@source": "JVN"
    },
    {
      "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2975",
      "@id": "CVE-2015-2975",
      "@source": "CVE"
    },
    {
      "#text": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2975",
      "@id": "CVE-2015-2975",
      "@source": "NVD"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-264",
      "@title": "Permissions(CWE-264)"
    }
  ],
  "title": "Research Artisan Lite does not properly perform authentication"
}

JVNDB-2015-000104

Vulnerability from jvndb - Published: 2015-07-24 14:36 - Updated:2015-07-28 17:29
Severity ?
N/A (UNKNOWN) - -
Summary
Research Artisan Lite vulnerable to cross-site scripting
Details
Research Artisan Lite provided by Research Artisan Project is an access analysis tool. Research Artisan Lite contains multiple cross-site scripting vulnerabilities (CWE-79). Gen Sato of TRADE WORKS Co.,Ltd. Security Dept. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
Impacted products
Show details on JVN DB website
To clipboard 

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000104.html",
  "dc:date": "2015-07-28T17:29+09:00",
  "dcterms:issued": "2015-07-24T14:36+09:00",
  "dcterms:modified": "2015-07-28T17:29+09:00",
  "description": "Research Artisan Lite provided by Research Artisan Project is an access analysis tool. Research Artisan Lite contains multiple cross-site scripting vulnerabilities (CWE-79).\r\n\r\nGen Sato of TRADE WORKS Co.,Ltd. Security Dept. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000104.html",
  "sec:cpe": {
    "#text": "cpe:/a:research-artisan:research_artisan_lite",
    "@product": "Research Artisan Lite",
    "@vendor": "Research Artisan Project",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "4.3",
    "@severity": "Medium",
    "@type": "Base",
    "@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2015-000104",
  "sec:references": [
    {
      "#text": "https://jvn.jp/en/jp/JVN58020495/index.html",
      "@id": "JVN#58020495",
      "@source": "JVN"
    },
    {
      "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2976",
      "@id": "CVE-2015-2976",
      "@source": "CVE"
    },
    {
      "#text": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2976",
      "@id": "CVE-2015-2976",
      "@source": "NVD"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-79",
      "@title": "Cross-site Scripting(CWE-79)"
    }
  ],
  "title": "Research Artisan Lite vulnerable to cross-site scripting"
}