CVE-2019-5954

Summary

JR East Japan train operation information push notification App for Android version 1.2.4 and earlier allows remote attackers to bypass access restriction to obtain or alter the user's registered information via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
East Japan Railway CompanyJR East Japan train operation information push notification App for Androidversion 1.2.4 and earlieraffected

Weaknesses

  • Fails to restrict access

ADP Enrichment

CVE Program Container

Additional References

References