Vulnerability Description
The Cookpad 1.5.16 and earlier and Cookpad Noseru 1.1.1 and earlier applications for Android do not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cookpad | Android Activities | <= 1.5.16 |
| Cookpad | Android Mykitchen | <= 1.1.1 |
Related Weaknesses (CWE)
References
- http://cookpad.typepad.jp/help/2012/02/23oshirase.htmlVendor Advisory
- http://jvn.jp/en/jp/JVN25731073/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2012-000014
- http://osvdb.org/79643
- http://secunia.com/advisories/48065
- http://www.securityfocus.com/bid/52189
- http://cookpad.typepad.jp/help/2012/02/23oshirase.htmlVendor Advisory
- http://jvn.jp/en/jp/JVN25731073/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2012-000014
- http://osvdb.org/79643
- http://secunia.com/advisories/48065
- http://www.securityfocus.com/bid/52189
FAQ
What is CVE-2012-0316?
CVE-2012-0316 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The Cookpad 1.5.16 and earlier and Cookpad Noseru 1.1.1 and earlier applications for Android do not properly implement the WebView class, which allows remote attackers to obtain sensitive information ...
How severe is CVE-2012-0316?
CVE-2012-0316 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-0316?
Check the references section above for vendor advisories and patch information. Affected products include: Cookpad Android Activities, Cookpad Android Mykitchen.