PT-2016-4627 · Cybozu · Cybozu Kintone

Gopinath

Published

2016-04-25

Updated

2017-03-15

CVE-2016-1185

CVSS v2.0

2.6

Low

Vector

AV:N/AC:H/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Cybozu kintone mobile application version 1.x before 1.0.6 for Android

Description The issue allows attackers to discover an authentication token via a crafted application. This could potentially lead to unauthorized access.

Recommendations For Cybozu kintone mobile application version 1.x before 1.0.6, update to version 1.0.6 or later to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2016-1185

Affected Products

Cybozu Kintone

PT-2016-4627 · Cybozu · Cybozu Kintone

CVE-2016-1185

Weakness Enumeration

Related Identifiers

Affected Products

References · 6