CVE-2020-5623

2020-08-2804:05:29

jpcert

www.cve.org

6.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.0%

JSON

NITORI App for Android versions 6.0.4 and earlier and NITORI App for iOS versions 6.0.2 and earlier allow remote attackers to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a phishing attack.

CNA Affected

[
  {
    "product": "NITORI App for Android and NITORI App for iOS",
    "vendor": "Nitori Holdings Co., Ltd.",
    "versions": [
      {
        "status": "affected",
        "version": "NITORI App for Android versions 6.0.4 and earlier and NITORI App for iOS versions 6.0.2 and earlier"
      }
    ]
  }
]

References

jvn.jp/en/jp/JVN77402327/index.html