19 matches found
EUVD-2015-7677
Malware in sbrugna...
EUVD-2021-8108
Malicious code in bioql PyPI...
CVE-2021-20693
Improper access control vulnerability in Gurunavi App for Android ver.10.0.10 and earlier and for iOS ver.11.1.2 and earlier allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App...
CVE-2021-20693
Improper access control vulnerability in Gurunavi App for Android ver.10.0.10 and earlier and for iOS ver.11.1.2 and earlier allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App...
CVE-2021-20693
Improper access control vulnerability in Gurunavi App for Android ver.10.0.10 and earlier and for iOS ver.11.1.2 and earlier allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App...
Improper access control
Improper access control vulnerability in Gurunavi App for Android ver.10.0.10 and earlier and for iOS ver.11.1.2 and earlier allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App...
CVE-2021-20693
CVE-2021-20693 affects Gurunavi App (Android and iOS). Root cause: improper access control via Custom URL Scheme that can lead a user to an arbitrary website, enabling phishing. Affected: Android v10.0.10 and earlier; iOS v11.1.2 and earlier. Mitigation: update to versions where fixes were releas...
CVE-2021-20693
Improper access control vulnerability in Gurunavi App for Android ver.10.0.10 and earlier and for iOS ver.11.1.2 and earlier allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App...
Gurunavi Apps fail to restrict access permissions
Overview Gurunavi Apps provided by Gurunavi, Inc. implement the function to access a requested URL using Custom URL Scheme. This function contains an improper access control vulnerability CWE-284 that may allow the vulnerable App to receive an request from an arbitrary App and execute an access...
Gourmet Navigator 本访问控制错误漏洞
Gourmet Navigator is a software application. Find restaurants by location, food category and keywords from a database of over 50,000 restaurants in Japan. An access control error vulnerability exists in Gourmet Navigator ver. version and prior versions, Gurunavi App for iOS ver. 11.1.2 version an...
JVN#54025691: Gurunavi Apps fail to restrict access permissions
Gurunavi Apps provided by Gurunavi, Inc. implement the function to access a requested URL using Custom URL Scheme. This function contains an improper access control vulnerability CWE-284 that may allow the vulnerable App to receive an request from an arbitrary App and execute an access. Impact A...
Code injection
Gurunavi App for iOS before 6.0.0 does not verify SSL certificates which could allow remote attackers to perform man-in-the-middle attacks...
CVE-2015-7778
Gurunavi App for iOS before 6.0.0 does not verify SSL certificates which could allow remote attackers to perform man-in-the-middle attacks...
CVE-2015-7778
Gurunavi App for iOS before 6.0.0 does not verify SSL certificates which could allow remote attackers to perform man-in-the-middle attacks...
CVE-2015-7778
Gurunavi App for iOS is affected: prior to version 6.0.0, the app fails to verify SSL server certificates, enabling potential man-in-the-middle attacks by intercepting encrypted traffic. Affected versions include Gurunavi App for iOS up to 5.4.4 (as cited by JVN/JVNDB, NVD entries). Root cause is...
Gurunavi App for iOS安全绕过漏洞
No description provided by source...
Gurunavi App for iOS Security Bypass Vulnerability
Gurunavi App for iOS is a set of Japanese mobile food software based on iOS. Gurunavi App for iOS fails to properly validate SSL certificates, allowing remote attackers to exploit the vulnerability to conduct man-in-the-middle attacks, impersonate a trusted server, and obtain sensitive informatio...
Gurunavi App for iOS fails to verify SSL server certificates
Overview Gurunavi App for iOS provided by Gurunavi, Inc. fails to verify SSL server certificates. AOKI Keiichi reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact A man-in-the-middle attack may allow an attacker...
JVN#29141986: Gurunavi App for iOS fails to verify SSL server certificates
Gurunavi App for iOS provided by Gurunavi, Inc. fails to verify SSL server certificates. Impact A man-in-the-middle attack may allow an attacker to eavesdrop on an encrypted communication. Solution Update the Software Update to the latest version according to the information provided by the...