Vulnerability Description
The Ogaki Kyoritsu Bank Smartphone Passbook application 1.0.0 for Android creates a log file containing input data from the user, which allows attackers to obtain sensitive information by reading a file.
CVSS Score
1.8
LOW
AV:A/AC:H/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Okb.Co.Jp | Smartphone Passbook | 1.00 |
Related Weaknesses (CWE)
References
- http://jvn.jp/en/jp/JVN48659722/index.htmlVendor Advisory
- http://jvndb.jvn.jp/jvndb/JVNDB-2015-000016Vendor Advisory
- http://www.okb.co.jp/okdirect/sp_passbook/information01.htmlVendor Advisory
- http://jvn.jp/en/jp/JVN48659722/index.htmlVendor Advisory
- http://jvndb.jvn.jp/jvndb/JVNDB-2015-000016Vendor Advisory
- http://www.okb.co.jp/okdirect/sp_passbook/information01.htmlVendor Advisory
FAQ
What is CVE-2015-0875?
CVE-2015-0875 is a vulnerability with a CVSS score of 1.8 (LOW). The Ogaki Kyoritsu Bank Smartphone Passbook application 1.0.0 for Android creates a log file containing input data from the user, which allows attackers to obtain sensitive information by reading a fi...
How severe is CVE-2015-0875?
CVE-2015-0875 has been rated LOW with a CVSS base score of 1.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-0875?
Check the references section above for vendor advisories and patch information. Affected products include: Okb.Co.Jp Smartphone Passbook.