NVD

Id
26734  
Name
CVE-2015-5630  
Description
Cross-site scripting (XSS) vulnerability in the NTT Broadband Platform Japan Connected-free Wi-Fi application 1.6.0 and earlier for Android and 1.0.2 and earlier for iOS allows remote attackers to inject arbitrary web script or HTML via a crafted SSID.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2015-09-11  
Modified Date
2015-09-14  
Seq
2015-5630  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
141532 26734 CVE-2015-5630 JVN#41048401  View
141533 26734 CVE-2015-5630 JVNDB-2015-000116  View
141534 26734 CVE-2015-5630 https://itunes.apple.com/en/app/japan-connected-free-wi-fi/id810838196?mt=8  View
141535 26734 CVE-2015-5630 https://play.google.com/store/apps/details?id=com.nttbp.jfw  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
5601 JVNDB-2015-000116 Japan Connected-free Wi-Fi におけるスクリプトインジェクションの脆弱性 エヌ・ティ・ティ・ブロードバンドプラットフォーム株式会社が提供する Japan Connected-free Wi-Fi には、SSID 情報の表示に起因する、スクリプトインジェクションの脆弱性が存在します。 CVE-2015-5630 82855 CVE-2015-5630 26734 5.4 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000116.html 2015-09-11 2015-09-15 View