EUVD-2014-2038

Malware in sbrugna...

kokuyo-st.co.jp XSS vulnerability

Open Bug Bounty ID: OBB-360067 Description| Value ---|--- Affected Website:| kokuyo-st.co.jp Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...

CVE-2014-1986

The Content Provider in the KOKUYO CamiApp application 1.21.1 and earlier for Android allows attackers to bypass intended access restrictions and read database information via a crafted application...

Design/Logic Flaw

The Content Provider in the KOKUYO CamiApp application 1.21.1 and earlier for Android allows attackers to bypass intended access restrictions and read database information via a crafted application...

CVE-2014-1986

The Content Provider in the KOKUYO CamiApp application 1.21.1 and earlier for Android allows attackers to bypass intended access restrictions and read database information via a crafted application...

CVE-2014-1986

The CVE refers to the Content Provider in KOKUYO S&T Co.’s CamiApp for Android (V1.21.1 and earlier). The root cause is that access permissions are not restricted, allowing a crafted or malicious Android application to read (and potentially modify) database information. Affected product: CamiApp ...

JVN#55438786: Content Provider in CamiApp for Android fails to restrict access permissions

The Content Provider in CamiApp for Android provided by KOKUYO S&T Co.,Ltd. contains an issue where access permissions are not restricted. Impact If a user of the affected product uses another malicious Android application, information stored in the database may be obtained or altered. Solution...