CVE-2014-7241
TSUTAYA < 5.3 - Remote Code Execution via Crafted HTML Document
Title source: llmDescription
The TSUTAYA application 5.3 and earlier for Android allows remote attackers to execute arbitrary Java methods via a crafted HTML document.
References (3)
Core 3
Core References
Vendor Advisory third-party-advisory
x_refsource_jvn
http://jvn.jp/en/jp/JVN97384696/index.html
Vendor Advisory third-party-advisory
x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2014-000124
Various Sources x_refsource_confirm
https://play.google.com/store/apps/details?id=jp.co.tsutaya.android.ranking
Scores
EPSS
0.0202
EPSS Percentile
78.6%
Details
CWE
CWE-20
Status
published
Products (1)
tsutaya/tsutaya
< 5.3
Published
Dec 19, 2014
Tracked Since
Feb 18, 2026