Information from KDDI CORPORATION
Vulnerability ID:JVN#24167657
Title:Android App "あんしんフィルター for au" vulnerable to cleartext transmission of sensitive information
Status:Vulnerable
This is a statement from the vendor itself with no modification by JPCERT/CC.
A vulnerability has been identified in the Android application "あんしんフィルター for auアプリ" due to the transmission of sensitive information in plaintext.
This vulnerability could allow an attacker to eavesdrop on or tamper with communications through a man-in-the-middle attack.
The vulnerability has been fixed in the following version or later.
Updating the app to the latest version will resolve the issue immediately.
Version 4.9_b0003 (released on November 27, 2025)
As of May 13, 2026, there have been no reports of damage or incidents resulting from this vulnerability.
