Lucene search

[email protected]CVE-2012-0316

HistoryMar 02, 2012 - 12:55 a.m.

CVE-2012-0316

2012-03-0200:55:02

CWE-200

[email protected]

web.nvd.nist.gov

cookpad

android

app

vulnerability

cve-2012-0316

security

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.2 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.4%

JSON

The Cookpad 1.5.16 and earlier and Cookpad Noseru 1.1.1 and earlier applications for Android do not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.

Affected configurations

NVD

Node

cookpadandroid_activitiesRange≤1.5.16

cookpadandroid_mykitchenRange≤1.1.1

CPENameOperatorVersion
cookpad:android_activitiescookpad android activitiesle1.5.16
cookpad:android_mykitchencookpad android mykitchenle1.1.1

CPE	Name	Operator	Version
cookpad:android_activities	cookpad android activities	le	1.5.16
cookpad:android_mykitchen	cookpad android mykitchen	le	1.1.1

References

cookpad.typepad.jp/help/2012/02/23oshirase.html

jvn.jp/en/jp/JVN25731073/index.html

jvndb.jvn.jp/jvndb/JVNDB-2012-000014

osvdb.org/79643

secunia.com/advisories/48065

www.securityfocus.com/bid/52189

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.2 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

75.4%

JSON

Related for CVE-2012-0316

nvd1 prion1 cvelist1 jvn1