Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for SUSHIRO by AKINDO SUSHIRO CO., LTD.

    JVNDB-2023-000011

    Vulnerability from jvndb - Published: 2023-01-31 14:10 - Updated:2024-06-11 17:35
    Severity
    Summary
    SUSHIRO App for Android outputs sensitive information to the log file
    Details
    SUSHIRO App for Android provided by AKINDO SUSHIRO CO., LTD. outputs sensitive information to the log file (CWE-532).
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-000011.html",
      "dc:date": "2024-06-11T17:35+09:00",
      "dcterms:issued": "2023-01-31T14:10+09:00",
      "dcterms:modified": "2024-06-11T17:35+09:00",
      "description": "SUSHIRO App for Android provided by AKINDO SUSHIRO CO., LTD. outputs sensitive information to the log file (CWE-532).",
      "link": "https://jvndb.jvn.jp/en/contents/2023/JVNDB-2023-000011.html",
      "sec:cpe": [
        {
          "#text": "cpe:/a:akindo-sushiro:hong_kong_sushiro",
          "@product": "Hong Kong SUSHIRO",
          "@vendor": "AKINDO SUSHIRO CO., LTD.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/a:akindo-sushiro:singapore_sushiro",
          "@product": "Singapore SUSHIRO",
          "@vendor": "AKINDO SUSHIRO CO., LTD.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/a:akindo-sushiro:sushiro",
          "@product": "SUSHIRO",
          "@vendor": "AKINDO SUSHIRO CO., LTD.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/a:akindo-sushiro:taiwan_sushiro",
          "@product": "Taiwan SUSHIRO",
          "@vendor": "AKINDO SUSHIRO CO., LTD.",
          "@version": "2.2"
        },
        {
          "#text": "cpe:/a:akindo-sushiro:thailand_sushiro",
          "@product": "Thailand SUSHIRO",
          "@vendor": "AKINDO SUSHIRO CO., LTD.",
          "@version": "2.2"
        }
      ],
      "sec:cvss": [
        {
          "@score": "4.9",
          "@severity": "Medium",
          "@type": "Base",
          "@vector": "AV:L/AC:L/Au:N/C:C/I:N/A:N",
          "@version": "2.0"
        },
        {
          "@score": "6.2",
          "@severity": "Medium",
          "@type": "Base",
          "@vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
          "@version": "3.0"
        }
      ],
      "sec:identifier": "JVNDB-2023-000011",
      "sec:references": [
        {
          "#text": "http://jvn.jp/en/jp/JVN84642320/index.html",
          "@id": "JVN#84642320",
          "@source": "JVN"
        },
        {
          "#text": "https://www.cve.org/CVERecord?id=CVE-2023-22362",
          "@id": "CVE-2023-22362",
          "@source": "CVE"
        },
        {
          "#text": "https://nvd.nist.gov/vuln/detail/CVE-2023-22362",
          "@id": "CVE-2023-22362",
          "@source": "NVD"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-200",
          "@title": "Information Exposure(CWE-200)"
        }
      ],
      "title": "SUSHIRO App for Android outputs sensitive information to the log file"
    }

    JVNDB-2016-000122

    Vulnerability from jvndb - Published: 2016-06-29 14:27 - Updated:2017-05-23 14:28
    Severity
    Summary
    Sushiro App fails to verify SSL server certificates
    Details
    Sushiro App provided by AKINDO SUSHIRO CO., LTD. fails to verify SSL server certificates. Yuta Teshima of Cyber Defense Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    Impacted products
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000122.html",
      "dc:date": "2017-05-23T14:28+09:00",
      "dcterms:issued": "2016-06-29T14:27+09:00",
      "dcterms:modified": "2017-05-23T14:28+09:00",
      "description": "Sushiro App provided by AKINDO SUSHIRO CO., LTD. fails to verify SSL server certificates.\r\n\r\nYuta Teshima of Cyber Defense Institute, Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000122.html",
      "sec:cpe": {
        "#text": "cpe:/a:akindo-sushiro:sushiro",
        "@product": "SUSHIRO",
        "@vendor": "AKINDO SUSHIRO CO., LTD.",
        "@version": "2.2"
      },
      "sec:cvss": [
        {
          "@score": "4.0",
          "@severity": "Medium",
          "@type": "Base",
          "@vector": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
          "@version": "2.0"
        },
        {
          "@score": "4.8",
          "@severity": "Medium",
          "@type": "Base",
          "@vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
          "@version": "3.0"
        }
      ],
      "sec:identifier": "JVNDB-2016-000122",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/jp/JVN30260727/index.html",
          "@id": "JVN#30260727",
          "@source": "JVN"
        },
        {
          "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4830",
          "@id": "CVE-2016-4830",
          "@source": "CVE"
        },
        {
          "#text": "https://nvd.nist.gov/vuln/detail/CVE-2016-4830",
          "@id": "CVE-2016-4830",
          "@source": "NVD"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-Other",
          "@title": "No Mapping(CWE-Other)"
        }
      ],
      "title": "Sushiro App fails to verify SSL server certificates"
    }