The GREE application prior to 1.4.0, GREE Tanken Dorirando application prior to 1.0.7, GREE Tsurisuta application prior to 1.5.0, GREE Monpura application prior to 1.1.1, GREE Kaizokuoukoku Columbus application prior to 1.3.5, GREE haconiwa application prior to 1.1.0, GREE Seisen Cerberus application prior to 1.1.0, and KDDI&GREE GREE Market application prior to 2.1.2 for Android do not properly implement the WebView class, which allows remote malicious users to obtain sensitive information via a crafted application.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gree gree |
||
kddi_\\&_gree gree_market |
||
gree tanken_dorirando |
||
gree seisen_cerberus |
||
gree tsurisuta |
||
gree monpura |
||
gree kaizokuoukoku_columbus |
||
gree haconiwa |