Primary

Context

KDDI Corporation Android App 'あんしんフィルター for au' Cleartext Transmission of Sensitive Information Vulnerability

Vulnerability

A vulnerability allowing cleartext transmission of sensitive information has been identified in the Android app 'あんしんフィルター for au' by KDDI Corporation, affecting versions prior to 4.9_b0003. This vulnerability (CWE-319) allows a man-in-the-middle attacker to access and modify communications sent in plaintext, potentially leading to unauthorized information disclosure or data tampering.

Impact

Exploitation of this vulnerability could allow a man-in-the-middle attacker to intercept and alter communications, with risks of disclosing sensitive information or tampering with data.

Remediation

Users are advised to update the app to the latest version available.

Added: May 14, 2026, 12:19 AM

Updated: May 14, 2026, 12:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

6.0

remediation

0.0

relevance

8.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

6.0

remediation

0.0

relevance

8.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

KDDI Corporation Android App 'あんしんフィルター for au' Cleartext Transmission of Sensitive Information Vulnerability

Vulnerability

Impact

Remediation

Affected Products

KDDI CORPORATION あんしんフィルター

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating