CVE-2018-0560

MEDIUM

Hatena Bookmark App for iOS 3.0-3.70 - Address Bar Spoofing via URL Display

Title source: llm
STIX 2.1

Description

Hatena Bookmark App for iOS Version 3.0 to 3.70 allows remote attackers to spoof the address bar via vectors related to URL display.

References (2)

Core 2
Core References
Vendor Advisory x_refsource_confirm
http://bookmark.hatenastaff.com/entry/2018/04/09/170000
Third Party Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN77753476/index.html

Scores

CVSS v3 6.5
EPSS 0.0102
EPSS Percentile 59.1%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Details

CWE
CWE-20
Status published
Products (1)
hatena/hatena_bookmark 3.0 - 3.70
Published Apr 16, 2018
Tracked Since Feb 18, 2026