Search

Find a vulnerability

Search criteria

    1 vulnerability found for Yahoo! Japan Box for Android by Yahoo Japan Corporation

    JVNDB-2014-000116

    Vulnerability from jvndb - Published: 2014-09-25 14:54 - Updated:2014-09-25 14:54
    Severity
    N/A (UNKNOWN) - -
    Summary
    Yahoo! Japan Box for Android issue where it fails to verify SSL server certificates
    Details
    Yahoo! Japan Box for Android provided by Yahoo Japan Corporation contains an issue where it fails to verify SSL server certificates. Yahoo Japan Corporation reported this vulnerability to JPCERT/CC to notify users of this issue through JVN. JPCERT/CC coordinated with Yahoo Japan Corporation to publish this JVN advisory under the Information Security Early Warning Partnership.
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-000116.html",
      "dc:date": "2014-09-25T14:54+09:00",
      "dcterms:issued": "2014-09-25T14:54+09:00",
      "dcterms:modified": "2014-09-25T14:54+09:00",
      "description": "Yahoo! Japan Box for Android provided by Yahoo Japan Corporation contains an issue where it fails to verify SSL server certificates.\r\n\r\nYahoo Japan Corporation reported this vulnerability to JPCERT/CC to notify users of this issue through JVN.\r\nJPCERT/CC coordinated with Yahoo Japan Corporation to publish this JVN advisory under the Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-000116.html",
      "sec:cpe": {
        "#text": "cpe:/a:misc:yahoo_japan_yahoo_box_for_android",
        "@product": "Yahoo! Japan Box for Android",
        "@vendor": "Yahoo Japan Corporation",
        "@version": "2.2"
      },
      "sec:cvss": {
        "@score": "4.0",
        "@severity": "Medium",
        "@type": "Base",
        "@vector": "AV:N/AC:H/Au:N/C:P/I:P/A:N",
        "@version": "2.0"
      },
      "sec:identifier": "JVNDB-2014-000116",
      "sec:references": [
        {
          "#text": "http://jvn.jp/en/jp/JVN48270605/index.html",
          "@id": "JVN#48270605",
          "@source": "JVN"
        },
        {
          "#text": "http://jvn.jp/vu/JVNVU90369988/index.html",
          "@id": "JVNVU#90369988",
          "@source": "JVN"
        },
        {
          "#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5881",
          "@id": "CVE-2014-5881",
          "@source": "CVE"
        },
        {
          "#text": "https://nvd.nist.gov/vuln/detail/CVE-2014-5881",
          "@id": "CVE-2014-5881",
          "@source": "NVD"
        },
        {
          "#text": "http://www.kb.cert.org/vuls/id/582497",
          "@id": "VU#582497",
          "@source": "CERT-VN"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-Other",
          "@title": "No Mapping(CWE-Other)"
        }
      ],
      "title": "Yahoo! Japan Box for Android issue where it fails to verify SSL server certificates"
    }