{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-000016.html",
  "dc:date": "2025-03-10T15:22+09:00",
  "dcterms:issued": "2025-03-06T14:27+09:00",
  "dcterms:modified": "2025-03-10T15:22+09:00",
  "description": "RemoteView allows a local PC to connect and control remote PCs through the cloud service provided by RSUPPORT Co.,Ltd.\r\nOn the remote PCs should be installed RemoteView Agent.\r\nThe following vulnerabilities are reported on RemoteView Agent installation.\u003cul\u003e\u003cli\u003eIncorrect access permission of a specific service (CWE-276) - CVE-2025-22447\u003c/li\u003e\u003cli\u003eIncorrect access permission of a specific folder (CWE-276) - CVE-2025-24864\u003c/li\u003e\u003c/ul\u003e\r\nYuya Asato of GMO Cybersecurity by Ierae, Inc. reported these vulnerabilities to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2025/JVNDB-2025-000016.html",
  "sec:cpe": {
    "#text": "cpe:/a:rsupport:remoteview-agent",
    "@product": "RemoteView Agent",
    "@vendor": "RSUPPORT Co., Ltd.",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "7.8",
    "@severity": "High",
    "@type": "Base",
    "@vector": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
    "@version": "3.0"
  },
  "sec:identifier": "JVNDB-2025-000016",
  "sec:references": [
    {
      "#text": "https://jvn.jp/en/jp/JVN24992507/index.html",
      "@id": "JVN#24992507",
      "@source": "JVN"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2025-22447",
      "@id": "CVE-2025-22447",
      "@source": "CVE"
    },
    {
      "#text": "https://www.cve.org/CVERecord?id=CVE-2025-24864",
      "@id": "CVE-2025-24864",
      "@source": "CVE"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-Other",
      "@title": "No Mapping(CWE-Other)"
    }
  ],
  "title": "Multiple vulnerabilities in RemoteView Agent (for Windows)"
}