Information from Gurunavi, Inc.
Vulnerability ID:JVN#54025691
Title:Gurunavi Apps fail to restrict access permissions
Status:Vulnerable
This is a statement from the vendor itself with no modification by JPCERT/CC.
Gurunavi App fails to restrict access permissions.
We have released the modified version on the GooglePlayStore and AppStore.
Please update to the latest version.
・Products Affected
Gurunavi App for Android ver.10.0.14 and earlier
Gurunavi App for iOS ver.11.1.3 and earlier
・Impact
A remote attacker may lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a phishing attack.
・Solution
Update the Application