NITORI App for Android versions 6.0.4 and earlier and NITORI App for iOS versions 6.0.2 and earlier allow remote attackers to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a phishing attack.
[
{
"product": "NITORI App for Android and NITORI App for iOS",
"vendor": "Nitori Holdings Co., Ltd.",
"versions": [
{
"status": "affected",
"version": "NITORI App for Android versions 6.0.4 and earlier and NITORI App for iOS versions 6.0.2 and earlier"
}
]
}
]