6 matches found
CVE-2016-1186
Kintone mobile for Android 1.0.0 through 1.0.5 does not verify SSL server certificates...
Code injection
Kintone mobile for Android 1.0.0 through 1.0.5 does not verify SSL server certificates...
CVE-2016-1186
Kintone mobile for Android 1.0.0 through 1.0.5 does not verify SSL server certificates...
Cybozu kintone for Android Validated SSL Server Certificate Vulnerability
Cybozu kintone for Android is an Android-based business cloud application for business communication and collaboration by Cybozu. A security vulnerability exists in Cybozu kintone for Android versions 1.0.0 to 1.0.5, which can be exploited by attackers to conduct man-in-the-middle attacks and...
kintone mobile for Android fails to verify SSL server certificates
Overview kintone mobile for Android provided by Cybozu, Inc. fails to verify SSL server certificates. Kusano Kazuhiko reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact A man-in-the-middle attack may allow an...
kintone mobile for Android information management vulnerability
Overview kintone mobile for Android provided by Cybozu, Inc. contains an authentication information management vulnerability. Kusano Kazuhiko and Gopinath reported this vulnerability to the developer. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership...