Lucene search
JpcertCVE-2012-2645HistoryJul 16, 2012 - 8:49 p.m.
CVE-2012-2645
2012-07-1620:49:22
CWE-200
jpcert
web.nvd.nist.gov
35
yahoo! japan
yahoo! browser
android
cve-2012-2645
webview
sensitive information
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.003
Percentile
69.7%
The Yahoo! Japan Yahoo! Browser application 1.2.0 and earlier for Android does not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.
Affected configurations
Node
yahooyahoo\!_browserRange≤1.2.0
googleandroid
| Vendor | Product | Version | CPE |
|---|---|---|---|
| yahoo | yahoo\!_browser | * | cpe:2.3:a:yahoo:yahoo\!_browser:*:*:*:*:*:*:*:* |
| android | * | cpe:2.3:o:google:android:*:*:*:*:*:*:*:* |
Related
prion
prion
Authentication flaw
2012-07-16 20:49:00
cvelist
cvelist
CVE-2012-2645
2012-07-16 17:00:00
nvd
nvd
CVE-2012-2645
2012-07-16 20:49:22
jvn
jvn
JVN#46088915: Yahoo! Browser vulnerable in the WebView class
2012-07-13 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.003
Percentile
69.7%
Related for CVE-2012-2645