CVE-2012-4013

high

Description

The WebView class in the Cybozu KUNAI Browser for Remote Service application beta for Android allows remote attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL.

References

http://products.cybozu.co.jp/remote/product/smartphone/

http://jvndb.jvn.jp/jvndb/JVNDB-2012-000085

http://jvn.jp/en/jp/JVN03015214/index.html

Details

Source: Mitre, NVD

Published: 2012-09-14

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

EPSS

EPSS: 0.0026