CVE-2015-2980
Yodobashi < 1.2.1.0 - Remote Code Execution via Crafted HTML Document
Title source: llmDescription
The Yodobashi application 1.2.1.0 and earlier for Android allows remote attackers to execute arbitrary Java methods, and consequently obtain sensitive information or execute OS commands, via a crafted HTML document.
References (3)
Core 3
Core References
Third Party Advisory x_refsource_confirm
http://jvn.jp/en/jp/JVN70465405/995407/index.html
Vendor Advisory third-party-advisory
x_refsource_jvn
http://jvn.jp/en/jp/JVN70465405/index.html
Vendor Advisory third-party-advisory
x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000110
Scores
EPSS
0.0203
EPSS Percentile
78.7%
Details
CWE
CWE-200
CWE-78
Status
published
Products (1)
yodobashi/yodobashi
< 1.2.1.0
Published
Aug 08, 2015
Tracked Since
Feb 18, 2026