Docomo

docomo

2 CVEs • 2 products

Products (2)

Click to collapse

Toggle

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-43543 3Docomo KddiSoftbank 3+ Message + Message+ Message Apr 16, 2025 Dec 21, 2022 N/A· v4 5.4 MEDIUM· v3 N/A· v2 KDDI +Message App, NTT DOCOMO +Message App, and SoftBank +Message App contain a vulnerability caused by improper handling of Unicode control characters. +Message App displays text unprocessed, even when control character...Show more KDDI +Message App, NTT DOCOMO +Message App, and SoftBank +Message App contain a vulnerability caused by improper handling of Unicode control characters. +Message App displays text unprocessed, even when control characters are contained, and the text is shown based on Unicode control character's specifications. Therefore, a crafted text may display misleading web links. As a result, a spoofed URL may be displayed and phishing attacks may be conducted. Affected products and versions are as follows: KDDI +Message App for Android prior to version 3.9.2 and +Message App for iOS prior to version 3.9.4, NTT DOCOMO +Message App for Android prior to version 54.49.0500 and +Message App for iOS prior to version 3.9.4, and SoftBank +Message App for Android prior to version 12.9.5 and +Message App for iOS prior to version 3.9.4Show less
CVE-2016-1132 1Docomo 1Shoplat May 13, 2026 Apr 13, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Shoplat App for iOS 1.10.00 through 1.18.00 does not properly verify SSL certificates.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2022-43543

3Docomo

KddiSoftbank

3+ Message

+ Message+ Message

Apr 16, 2025

Dec 21, 2022

N/A· v4

5.4 MEDIUM· v3

N/A· v2

KDDI +Message App, NTT DOCOMO +Message App, and SoftBank +Message App contain a vulnerability caused by improper handling of Unicode control characters. +Message App displays text unprocessed, even when control characters are contained, and the text is shown based on Unicode control character's specifications. Therefore, a crafted text may display misleading web links. As a result, a spoofed URL may be displayed and phishing attacks may be conducted. Affected products and versions are as follows: KDDI +Message App for Android prior to version 3.9.2 and +Message App for iOS prior to version 3.9.4, NTT DOCOMO +Message App for Android prior to version 54.49.0500 and +Message App for iOS prior to version 3.9.4, and SoftBank +Message App for Android prior to version 12.9.5 and +Message App for iOS prior to version 3.9.4Show less

CVE-2016-1132

1Docomo

1Shoplat

May 13, 2026

Apr 13, 2017

N/A· v4

7.5 HIGH· v3

5.0 MEDIUM· v2

Shoplat App for iOS 1.10.00 through 1.18.00 does not properly verify SSL certificates.