WebView Class Vulnerability in Cybozu Live for Android
CVE-2013-3647

Currently unrated

Key Information:

Vendor

Cybozu
Status
Cybozu Live
Vendor
CVE Published:
18 June 2013

What is CVE-2013-3647?

The WebView class within Cybozu Live for Android versions prior to 2.0.1 contains a vulnerability that enables attackers to execute arbitrary JavaScript code. This can be achieved by leveraging a malicious application that injects the code into a local file linked to a file: URL. As a result, attackers may gain unauthorized access to sensitive information stored within the app, highlighting significant security risks associated with this issue, which stems from a flaw documented in a prior vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://jvndb.jvn.jp/jvndb/JVNDB-2013-000060
third-party-advisoryx_refsource_JVNDB
http://jvn.jp/en/jp/JVN19740283/index.html
third-party-advisoryx_refsource_JVN
https://live.cybozu.co.jp/trouble.html?q=2530
x_refsource_CONFIRM

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.