Vulnerabilities > CVE-2020-5629 - Unspecified vulnerability in Uniqlo 7.3.3

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

uniqlo

NVD

Published: 2020-09-18

Updated: 2020-09-26

Summary

UNIQLO App for Android versions 7.3.3 and earlier allows remote attackers to lead a user to access an arbitrary website via a malicious App created by the third party. As a result, if the access destination is a malicious website, the user may fall victim to the social engineering attack.

Vulnerable Configurations

Part	Description	Count
Application	Uniqlo Uniqlo Uniqlo 7.3.3	1

References

https://jvn.jp/en/jp/JVN31864411/index.html