CVE-2012-4011

Cybozu KUNAI < 2.0.5 - Remote Code Execution via Crafted Website

Title source: llm
STIX 2.1

Description

The Cybozu KUNAI application before 2.0.6 for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site.

References (3)

Core 3
Core References
Third Party Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN23568423/index.html
Third Party Advisory third-party-advisory x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2012-000083
Vendor Advisory x_refsource_confirm
http://cs.cybozu.co.jp/information/20120910up01.php

Scores

EPSS 0.0212
EPSS Percentile 84.4%

Details

CWE
CWE-78
Status published
Products (1)
cybozu/kunai < 2.0.5
Published Sep 08, 2012
Tracked Since Feb 18, 2026