Описание
NITORI App for Android versions 6.0.4 and earlier and NITORI App for iOS versions 6.0.2 and earlier allow remote attackers to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a phishing attack.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 6.0.2 (включая)Версия до 6.0.4 (включая)
Одно из
cpe:2.3:a:nitori:nitori:*:*:*:*:*:iphone_os:*:*
cpe:2.3:a:nitori:nitori:*:*:*:*:*:android:*:*
EPSS
Процентиль: 44%
0.00214
Низкий
6.1 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-601
Связанные уязвимости
github
больше 3 лет назад
NITORI App for Android versions 6.0.4 and earlier and NITORI App for iOS versions 6.0.2 and earlier allow remote attackers to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a phishing attack.
EPSS
Процентиль: 44%
0.00214
Низкий
6.1 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-601