CVE-2020-5604

Published: 2020-07-09T02:15Z

Last Modified: 2024-11-21T05:34Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Android App 'Mercari' (Japan version) prior to version 3.52.0 allows arbitrary method execution of a Java object by a remote attacker via a Man-In-The-Middle attack by using Java Reflection API of JavaScript code on WebView. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt