Kunai
Sign in to watchby Cybozu
CVEs (5)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-1187 | Med | 0.44 | 6.8 | 0.00 | Apr 21, 2017 | Cybozu KUNAI for iPhone 2.0.3 through 3.1.5 and for Android 2.1.2 through 3.0.4 does not verify SSL certificates. | |
| CVE-2017-2172 | Med | 0.40 | 6.1 | 0.00 | Jul 7, 2017 | Cross-site scripting vulnerability in Cybozu KUNAI for Android 3.0.0 to 3.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |
| CVE-2017-2109 | Low | 0.16 | 2.5 | 0.00 | Apr 28, 2017 | Cybozu KUNAI for Android 3.0.4 to 3.0.5.1 allow remote attackers to obtain log information through a malicious Android application. | |
| CVE-2012-4012 | 0.00 | — | 0.00 | Sep 8, 2012 | The WebView class in the Cybozu KUNAI application before 2.0.6 for Android allows remote attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL. | ||
| CVE-2012-4011 | 0.00 | — | 0.02 | Sep 8, 2012 | The Cybozu KUNAI application before 2.0.6 for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site. |