4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
59.6%
GREE for Android contains an issue in handling URL inputs, which may result in a directory traversal vulnerability.
If a user of the affected product uses another malicious Android application, information managed by the affected product may be disclosed.
Update the software
Update to the latest version according to the information provided by the developer.
According to the developer, this vulnerability was addressed in GREE 1.3.3 (released to Google Play on 2011/11/30).