CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-3646

The Cybozu Live application before 2.0.1 for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site. NOTE: this vulnerability exists because of a CVE-2012-4008 regression.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.2%

CVSS Severity

CVSS v2 Score 6.8

References

http://jvn.jp/en/jp/JVN63428218/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2013-000059
https://live.cybozu.co.jp/trouble.html?q=2530
http://jvn.jp/en/jp/JVN63428218/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2013-000059
https://live.cybozu.co.jp/trouble.html?q=2530

Products affected by CVE-2013-3646

Cybozu » Cybozu Live » Version: 1.0.4

cpe:2.3:a:cybozu:cybozu_live:1.0.4
Cybozu » Cybozu Live » Version: 2.0.0

cpe:2.3:a:cybozu:cybozu_live:2.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-3646

Products

Pricing

Contact Us