Vulnerabilities > Cybozu > Kunai > 2.0.5

DATE CVE VULNERABILITY TITLE RISK
2017-04-21 CVE-2016-1187 Information Exposure vulnerability in Cybozu Kunai
Cybozu KUNAI for iPhone 2.0.3 through 3.1.5 and for Android 2.1.2 through 3.0.4 does not verify SSL certificates.
network
cybozu CWE-200
4.3
4.3
2012-09-08 CVE-2012-4012 Information Exposure vulnerability in Cybozu Kunai 2.0.5
The WebView class in the Cybozu KUNAI application before 2.0.6 for Android allows remote attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL.
network
cybozu CWE-200
4.3
4.3
2012-09-08 CVE-2012-4011 OS Command Injection vulnerability in Cybozu Kunai 2.0.5
The Cybozu KUNAI application before 2.0.6 for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site.
network
cybozu CWE-78
critical
 9.3
9.3