Information from Gunosy Inc.
Vulnerability ID:JVN#47404248
Title:"Gunosy" App vulnerable to insertion of sensitive information into sent data (CWE-201)
Status:Vulnerable
This is a statement from the vendor itself with no modification by JPCERT/CC.
Fixed versions of “Gunosy” are now available on Google Play Store and App Store.
Regarding the vulnerability, no attacks or exploitation has been confirmed or reported as far as we know.
Android - Google Play Store
*fixed version : v7.34.0 and later.
https://play.google.com/store/apps/details?id=com.gunosy.android&hl=ja
iOS - App Store
*fixed version : v7.34.0 and later.
https://apps.apple.com/jp/app/グノシー-重要ニュースを分かりやすく-楽しくお届け/id590384791
