GCVE - cpe:2.3:a:cybozu:cybozu_live:*:-:*:*:*:android:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:cybozu:cybozu_live:*:-:*:*:*:android:*:*

part: a version: * update: -

Vendor	Cybozu (`6c3c6c19-80d3-5353-ad46-e08ec1369448`)
Product	Cybozu Live (`91dd35c6-d546-5223-ad03-4ac6896b3989`)
Edition	*
Language	*
Software edition	*
Target software	android
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2013-3647`	vulnerable	2026-06-03 14:33:08.175113	Details available The WebView class in the Cybozu Live application before 2.0.1 for Android allows attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL. NOTE: this vulnerability exists because of a CVE-2012-4009 regression. Published: 2013-06-18T18:45:00.000Z Updated: 2024-09-16T18:08:44.597Z Open on db.gcve.eu Reference links http://jvndb.jvn.jp/jvndb/JVNDB-2013-000060 http://jvn.jp/en/jp/JVN19740283/index.html https://live.cybozu.co.jp/trouble.html?q=2530	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-3646`	vulnerable	2026-06-03 14:33:08.174131	Details available The Cybozu Live application before 2.0.1 for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site. NOTE: this vulnerability exists because of a CVE-2012-4008 regression. Published: 2013-06-18T18:45:00.000Z Updated: 2024-09-16T19:10:58.003Z Open on db.gcve.eu Reference links http://jvndb.jvn.jp/jvndb/JVNDB-2013-000059 https://live.cybozu.co.jp/trouble.html?q=2530 http://jvn.jp/en/jp/JVN63428218/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-4009`	vulnerable	2026-06-03 14:32:16.909554	Details available The WebView class in the Cybozu Live application 1.0.4 and earlier for Android allows remote attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL. Published: 2012-08-31T14:00:00.000Z Updated: 2024-09-17T00:46:35.590Z Open on db.gcve.eu Reference links http://jvn.jp/en/jp/JVN77393797/index.html http://magazine.cybozulive.com/2012/08/291200.html http://jvndb.jvn.jp/jvndb/JVNDB-2012-000082	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-4008`	vulnerable	2026-06-03 14:32:16.909166	Details available The Cybozu Live application 1.0.4 and earlier for Android allows remote attackers to execute arbitrary Java methods, and obtain sensitive information or execute arbitrary commands, via a crafted web site. Published: 2012-08-31T14:00:00.000Z Updated: 2024-09-17T02:32:32.882Z Open on db.gcve.eu Reference links http://magazine.cybozulive.com/2012/08/291200.html http://jvndb.jvn.jp/jvndb/JVNDB-2012-000081 http://jvn.jp/en/jp/JVN23009798/index.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.