Search Results (Refine Search)
- CPE Product Version: cpe:/a:cybozu:cybozu_live:1.0.4:-:~~~android~~
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2013-3647 |
The WebView class in the Cybozu Live application before 2.0.1 for Android allows attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL. NOTE: this vulnerability exists because of a CVE-2012-4009 regression. Published: June 18, 2013; 2:55:09 PM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2013-3646 |
The Cybozu Live application before 2.0.1 for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site. NOTE: this vulnerability exists because of a CVE-2012-4008 regression. Published: June 18, 2013; 2:55:09 PM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2012-4009 |
The WebView class in the Cybozu Live application 1.0.4 and earlier for Android allows remote attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL. Published: August 31, 2012; 10:55:01 AM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |
CVE-2012-4008 |
The Cybozu Live application 1.0.4 and earlier for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site. Published: August 31, 2012; 10:55:01 AM -0400 |
V3.x:(not available) V2.0: 6.8 MEDIUM |