CVE-2018-0560
UnknownEPSS 1.02%
Last modified
CVE-2018-0560 is a vulnerability of currently unknown severity. Hatena Bookmark App for iOS Version 3.0 to 3.70 allows remote attackers to spoof the address bar via vectors related to URL display.. EPSS estimates a 1.02% chance of exploitation in the next 30 days.
Description
Hatena Bookmark App for iOS Version 3.0 to 3.70 allows remote attackers to spoof the address bar via vectors related to URL display.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Hatena | Hatena Bookmark | >= 3.0, <= 3.70 |
References
- http://bookmark.hatenastaff.com/entry/2018/04/09/170000Vendor Advisory
- http://jvn.jp/en/jp/JVN77753476/index.htmlThird Party Advisory
- http://bookmark.hatenastaff.com/entry/2018/04/09/170000Vendor Advisory
- http://jvn.jp/en/jp/JVN77753476/index.htmlThird Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-0560?
Hatena Bookmark App for iOS Version 3.0 to 3.70 allows remote attackers to spoof the address bar via vectors related to URL display.
How severe is CVE-2018-0560?
Severity scoring for CVE-2018-0560 is pending analysis. The EPSS model estimates a 1.02% probability of exploitation in the next 30 days.
How do I fix CVE-2018-0560?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2018-0560?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST