CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
EPSS
Percentile
55.2%
050 plus provided by NTT Communications is an IP phone application for smartphones. 050 plus for Android contains an information management vulnerability that outputs some pieces of information stored by the product to a system log file on the device.
Android applications with permissions to read system log files may obtain log information stored by the product.
Update the software
Update to the latest version according to the information provided by the developer.
Note that information stored in the system log may not be deleted by software update. Please be aware when installing an application that is capable of reading log files on the device.