Search
Find a vulnerability
Search criteria
6 vulnerabilities by Ministry of Internal Affairs and Communications
CVE-2019-5958 (GCVE-0-2019-5958)
Vulnerability from nvd – Published: 2019-05-17 15:25 – Updated: 2024-08-04 20:09
VLAI
EPSS
VEX
Summary
Untrusted search path vulnerability in Electronic reception and examination of application for radio licenses Offline 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
Severity
No CVSS data available.
CWE
- Untrusted search path vulnerability
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://www.denpa.soumu.go.jp/public/prog/offline… | x_refsource_MISC |
| http://jvn.jp/en/jp/JVN69903953/index.html | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Ministry of Internal Affairs and Communications | Electronic reception and examination of application for radio licenses Offline |
Affected:
1.0.9.0 and earlier
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T20:09:24.036Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.denpa.soumu.go.jp/public/prog/offlineInstaller_download.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN69903953/index.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Electronic reception and examination of application for radio licenses Offline",
"vendor": "Ministry of Internal Affairs and Communications",
"versions": [
{
"status": "affected",
"version": "1.0.9.0 and earlier"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in Electronic reception and examination of application for radio licenses Offline 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Untrusted search path vulnerability",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-05-17T15:25:56.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.denpa.soumu.go.jp/public/prog/offlineInstaller_download.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://jvn.jp/en/jp/JVN69903953/index.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2019-5958",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Electronic reception and examination of application for radio licenses Offline",
"version": {
"version_data": [
{
"version_value": "1.0.9.0 and earlier"
}
]
}
}
]
},
"vendor_name": "Ministry of Internal Affairs and Communications"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability in Electronic reception and examination of application for radio licenses Offline 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.denpa.soumu.go.jp/public/prog/offlineInstaller_download.html",
"refsource": "MISC",
"url": "https://www.denpa.soumu.go.jp/public/prog/offlineInstaller_download.html"
},
{
"name": "http://jvn.jp/en/jp/JVN69903953/index.html",
"refsource": "MISC",
"url": "http://jvn.jp/en/jp/JVN69903953/index.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2019-5958",
"datePublished": "2019-05-17T15:25:56.000Z",
"dateReserved": "2019-01-10T00:00:00.000Z",
"dateUpdated": "2024-08-04T20:09:24.036Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2019-5957 (GCVE-0-2019-5957)
Vulnerability from nvd – Published: 2019-05-17 15:25 – Updated: 2024-08-04 20:09
VLAI
EPSS
VEX
Summary
Untrusted search path vulnerability in Installer of Electronic reception and examination of application for radio licenses Online 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
Severity
No CVSS data available.
CWE
- Untrusted search path vulnerability
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://www.denpa.soumu.go.jp/public/prog/onlineI… | x_refsource_MISC |
| http://jvn.jp/en/jp/JVN91361851/index.html | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Ministry of Internal Affairs and Communications | Installer of Electronic reception and examination of application for radio licenses Online |
Affected:
1.0.9.0 and earlier
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T20:09:23.990Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.denpa.soumu.go.jp/public/prog/onlineInstaller_download.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN91361851/index.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Installer of Electronic reception and examination of application for radio licenses Online",
"vendor": "Ministry of Internal Affairs and Communications",
"versions": [
{
"status": "affected",
"version": "1.0.9.0 and earlier"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in Installer of Electronic reception and examination of application for radio licenses Online 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Untrusted search path vulnerability",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-05-17T15:25:56.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.denpa.soumu.go.jp/public/prog/onlineInstaller_download.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://jvn.jp/en/jp/JVN91361851/index.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2019-5957",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Installer of Electronic reception and examination of application for radio licenses Online",
"version": {
"version_data": [
{
"version_value": "1.0.9.0 and earlier"
}
]
}
}
]
},
"vendor_name": "Ministry of Internal Affairs and Communications"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability in Installer of Electronic reception and examination of application for radio licenses Online 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.denpa.soumu.go.jp/public/prog/onlineInstaller_download.html",
"refsource": "MISC",
"url": "https://www.denpa.soumu.go.jp/public/prog/onlineInstaller_download.html"
},
{
"name": "http://jvn.jp/en/jp/JVN91361851/index.html",
"refsource": "MISC",
"url": "http://jvn.jp/en/jp/JVN91361851/index.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2019-5957",
"datePublished": "2019-05-17T15:25:56.000Z",
"dateReserved": "2019-01-10T00:00:00.000Z",
"dateUpdated": "2024-08-04T20:09:23.990Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2019-5957 (GCVE-0-2019-5957)
Vulnerability from cvelistv5 – Published: 2019-05-17 15:25 – Updated: 2024-08-04 20:09
VLAI
EPSS
VEX
Summary
Untrusted search path vulnerability in Installer of Electronic reception and examination of application for radio licenses Online 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
Severity
No CVSS data available.
CWE
- Untrusted search path vulnerability
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://www.denpa.soumu.go.jp/public/prog/onlineI… | x_refsource_MISC |
| http://jvn.jp/en/jp/JVN91361851/index.html | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Ministry of Internal Affairs and Communications | Installer of Electronic reception and examination of application for radio licenses Online |
Affected:
1.0.9.0 and earlier
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T20:09:23.990Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.denpa.soumu.go.jp/public/prog/onlineInstaller_download.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN91361851/index.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Installer of Electronic reception and examination of application for radio licenses Online",
"vendor": "Ministry of Internal Affairs and Communications",
"versions": [
{
"status": "affected",
"version": "1.0.9.0 and earlier"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in Installer of Electronic reception and examination of application for radio licenses Online 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Untrusted search path vulnerability",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-05-17T15:25:56.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.denpa.soumu.go.jp/public/prog/onlineInstaller_download.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://jvn.jp/en/jp/JVN91361851/index.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2019-5957",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Installer of Electronic reception and examination of application for radio licenses Online",
"version": {
"version_data": [
{
"version_value": "1.0.9.0 and earlier"
}
]
}
}
]
},
"vendor_name": "Ministry of Internal Affairs and Communications"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability in Installer of Electronic reception and examination of application for radio licenses Online 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.denpa.soumu.go.jp/public/prog/onlineInstaller_download.html",
"refsource": "MISC",
"url": "https://www.denpa.soumu.go.jp/public/prog/onlineInstaller_download.html"
},
{
"name": "http://jvn.jp/en/jp/JVN91361851/index.html",
"refsource": "MISC",
"url": "http://jvn.jp/en/jp/JVN91361851/index.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2019-5957",
"datePublished": "2019-05-17T15:25:56.000Z",
"dateReserved": "2019-01-10T00:00:00.000Z",
"dateUpdated": "2024-08-04T20:09:23.990Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2019-5958 (GCVE-0-2019-5958)
Vulnerability from cvelistv5 – Published: 2019-05-17 15:25 – Updated: 2024-08-04 20:09
VLAI
EPSS
VEX
Summary
Untrusted search path vulnerability in Electronic reception and examination of application for radio licenses Offline 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
Severity
No CVSS data available.
CWE
- Untrusted search path vulnerability
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://www.denpa.soumu.go.jp/public/prog/offline… | x_refsource_MISC |
| http://jvn.jp/en/jp/JVN69903953/index.html | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Ministry of Internal Affairs and Communications | Electronic reception and examination of application for radio licenses Offline |
Affected:
1.0.9.0 and earlier
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T20:09:24.036Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.denpa.soumu.go.jp/public/prog/offlineInstaller_download.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://jvn.jp/en/jp/JVN69903953/index.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Electronic reception and examination of application for radio licenses Offline",
"vendor": "Ministry of Internal Affairs and Communications",
"versions": [
{
"status": "affected",
"version": "1.0.9.0 and earlier"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Untrusted search path vulnerability in Electronic reception and examination of application for radio licenses Offline 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Untrusted search path vulnerability",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-05-17T15:25:56.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.denpa.soumu.go.jp/public/prog/offlineInstaller_download.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://jvn.jp/en/jp/JVN69903953/index.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2019-5958",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Electronic reception and examination of application for radio licenses Offline",
"version": {
"version_data": [
{
"version_value": "1.0.9.0 and earlier"
}
]
}
}
]
},
"vendor_name": "Ministry of Internal Affairs and Communications"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability in Electronic reception and examination of application for radio licenses Offline 1.0.9.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Untrusted search path vulnerability"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.denpa.soumu.go.jp/public/prog/offlineInstaller_download.html",
"refsource": "MISC",
"url": "https://www.denpa.soumu.go.jp/public/prog/offlineInstaller_download.html"
},
{
"name": "http://jvn.jp/en/jp/JVN69903953/index.html",
"refsource": "MISC",
"url": "http://jvn.jp/en/jp/JVN69903953/index.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2019-5958",
"datePublished": "2019-05-17T15:25:56.000Z",
"dateReserved": "2019-01-10T00:00:00.000Z",
"dateUpdated": "2024-08-04T20:09:24.036Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
JVNDB-2019-000026
Vulnerability from jvndb - Published: 2019-05-10 14:55 - Updated:2019-10-01 10:08
Severity
Summary
Electronic reception and examination of application for radio licenses Offline may insecurely load Dynamic Link Libraries
Details
Electronic reception and examination of application for radio licenses Offline contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries (CWE-427).
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-000026.html",
"dc:date": "2019-10-01T10:08+09:00",
"dcterms:issued": "2019-05-10T14:55+09:00",
"dcterms:modified": "2019-10-01T10:08+09:00",
"description": "Electronic reception and examination of application for radio licenses Offline contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries (CWE-427).",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-000026.html",
"sec:cpe": {
"#text": "cpe:/a:soumu:electronic_reception_and_examination_of_application_for_radio_licenses",
"@product": "Electronic reception and examination of application for radio licenses",
"@vendor": "Ministry of Internal Affairs and Communications",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "6.8",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
{
"@score": "7.8",
"@severity": "High",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2019-000026",
"sec:references": [
{
"#text": "https://jvn.jp/en/ta/JVNTA91240916/",
"@id": "JVNTA#91240916",
"@source": "JVN"
},
{
"#text": "https://jvn.jp/en/jp/JVN69903953/index.html",
"@id": "JVN#69903953",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5958",
"@id": "CVE-2019-5958",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2019-5958",
"@id": "CVE-2019-5958",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "Electronic reception and examination of application for radio licenses Offline may insecurely load Dynamic Link Libraries"
}
JVNDB-2019-000025
Vulnerability from jvndb - Published: 2019-05-10 14:49 - Updated:2019-10-01 10:11
Severity
Summary
Installer of Electronic reception and examination of application for radio licenses Online may insecurely load Dynamic Link Libraries
Details
Installer of Electronic reception and examination of application for radio licenses Online contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries (CWE-427).
References
Impacted products
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-000025.html",
"dc:date": "2019-10-01T10:11+09:00",
"dcterms:issued": "2019-05-10T14:49+09:00",
"dcterms:modified": "2019-10-01T10:11+09:00",
"description": "Installer of Electronic reception and examination of application for radio licenses Online contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries (CWE-427).",
"link": "https://jvndb.jvn.jp/en/contents/2019/JVNDB-2019-000025.html",
"sec:cpe": {
"#text": "cpe:/a:soumu:electronic_reception_and_examination_of_application_for_radio_licenses",
"@product": "Electronic reception and examination of application for radio licenses",
"@vendor": "Ministry of Internal Affairs and Communications",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "6.8",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
{
"@score": "7.8",
"@severity": "High",
"@type": "Base",
"@vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2019-000025",
"sec:references": [
{
"#text": "https://jvn.jp/en/ta/JVNTA91240916/",
"@id": "JVNTA#91240916",
"@source": "JVN"
},
{
"#text": "https://jvn.jp/en/jp/JVN91361851/index.html",
"@id": "JVN#91361851",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5957",
"@id": "CVE-2019-5957",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2019-5957",
"@id": "CVE-2019-5957",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "Installer of Electronic reception and examination of application for radio licenses Online may insecurely load Dynamic Link Libraries"
}