RSS   Vulnerabilities for 'Yodobashi'   RSS

2018-01-12
 
CVE-2015-2981

CWE-295
 

 
The Yodobashi App for Android 1.2.1.0 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

 
2015-08-07
 
CVE-2015-2980

 

 
The Yodobashi application 1.2.1.0 and earlier for Android allows remote attackers to execute arbitrary Java methods, and consequently obtain sensitive information or execute OS commands, via a crafted HTML document.

 


Copyright 2019, cxsecurity.com

 

Back to Top