JVN#61297210: Money Forward Apps for Android vulnerable in the WebView class

2016-09-20T00:00:00
ID JVN:61297210
Type jvn
Reporter Japan Vulnerability Notes
Modified 2016-09-20T00:00:00

Description

## Description

Money Forward Apps for Android contain a vulnerability in the WebView class.

## Impact

If a user of the affected product uses another malicious Android application, information managed by the affected product may be disclosed.

## Solution

Update the application
Update to the latest version according to the information provided by the developer.

## Products Affected

The following products provided by Money Forward, Inc.

  • Android App Money Forward (prior to v7.18.0)
  • Android App Money Forward for The Gunma Bank (prior to v1.2.0)
  • Android App Money Forward for SHIGA BANK (prior to v1.2.0)
  • Android App Money Forward for SHIZUOKA BANK (prior to v1.4.0)
  • Android App Money Forward for SBI Sumishin Net Bank (prior to v1.6.0)
  • Android App Money Forward for Tokai Tokyo Securities (prior to v1.4.0)
  • Android App Money Forward for THE TOHO BANK (prior to v1.3.0)
  • Android App Money Forward for YMFG (prior to v1.5.0)

The following products provided by SOURCENEXT CORPORATION

  • Money Forward for AppPass (prior to v7.18.3)
  • Money Forward for au SMARTPASS (prior to v7.18.0)
  • Money Forward for Chou Houdai (prior to v7.18.3)