CVE-2015-2980

Yodobashi < 1.2.1.0 - Remote Code Execution via Crafted HTML Document

Title source: llm
STIX 2.1

Description

The Yodobashi application 1.2.1.0 and earlier for Android allows remote attackers to execute arbitrary Java methods, and consequently obtain sensitive information or execute OS commands, via a crafted HTML document.

References (3)

Core 3
Core References
Third Party Advisory x_refsource_confirm
http://jvn.jp/en/jp/JVN70465405/995407/index.html
Vendor Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN70465405/index.html
Vendor Advisory third-party-advisory x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000110

Scores

EPSS 0.0203
EPSS Percentile 78.7%

Details

CWE
CWE-200 CWE-78
Status published
Products (1)
yodobashi/yodobashi < 1.2.1.0
Published Aug 08, 2015
Tracked Since Feb 18, 2026