Vulnerabilities > Yodobashi
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-09 | CVE-2020-5627 | Open Redirect vulnerability in Yodobashi 1.2.1.0/1.4.4/1.8.7 Yodobashi App for Android versions 1.8.7 and earlier allows remote attackers to lead a user to access an arbitrary website via the vulnerable App. | 5.8 |
| 2018-01-12 | CVE-2015-2981 | Improper Certificate Validation vulnerability in Yodobashi 1.2.1.0 The Yodobashi App for Android 1.2.1.0 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | 4.3 |
| 2015-08-08 | CVE-2015-2980 | Information Exposure vulnerability in Yodobashi 1.2.1.0 The Yodobashi application 1.2.1.0 and earlier for Android allows remote attackers to execute arbitrary Java methods, and consequently obtain sensitive information or execute OS commands, via a crafted HTML document. | 6.8 |