CVE-2021-20715

Summary

Improper access control vulnerability in Hot Pepper Gourmet App for Android ver.4.111.0 and earlier, and for iOS ver.4.111.0 and earlier allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App.

Affected Software

VendorProductVersion RangeStatus
Recruit Co., Ltd.Hot Pepper Gourmet Appfor Android ver.4.111.0 and earlier, and for iOS ver.4.111.0 and earlieraffected

Weaknesses

  • Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References