CVE-2020-5604
N/A
N/A
Summary
Android App 'Mercari' (Japan version) prior to version 3.52.0 allows arbitrary method execution of a Java object by a remote attacker via a Man-In-The-Middle attack by using Java Reflection API of JavaScript code on WebView.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Mercari, Inc. | Android App ‘Mercari’ (Japan version) | prior to version 3.52.0 | affected |
Weaknesses
- Exposed Dangerous Method or Function
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.