4.3

CVE-2012-4013

EPSS 0.26%
Veröffentlicht 14.09.2012 23:55:00
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle vultures@jpcert.or.jp
CVE-Watchlists
Login
Unerledigt
Login

The WebView class in the Cybozu KUNAI Browser for Remote Service application beta for Android allows remote attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cybozu ≫ Kunai Browser For Remote Service Version- Updatebeta SwPlatformandroid

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.26%	0.464

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:P/I:N/A:N

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://jvn.jp/en/jp/JVN03015214/index.html

http://jvndb.jvn.jp/jvndb/JVNDB-2012-000085

http://products.cybozu.co.jp/remote/product/smartphone/

https://nvd.nist.gov/vuln/detail/CVE-2012-4013

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-4013

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-4013

EUVD