Lucene search

[email protected]NVD:CVE-2014-5318

HistorySep 26, 2014 - 10:55 a.m.

CVE-2014-5318

2014-09-2610:55:04

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

6.4

Confidence

Low

EPSS

0.007

Percentile

81.0%

JSON

The jigbrowser+ application 1.8.1 and earlier for iOS allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code.

Affected configurations

Nvd

Node

jigjigbrowser\+Range≤1.8.1

jigjigbrowser\+Match1.8.0

VendorProductVersionCPE
jigjigbrowser\+*cpe:2.3:a:jig:jigbrowser\+:*:*:*:*:*:*:*:*
jigjigbrowser\+1.8.0cpe:2.3:a:jig:jigbrowser\+:1.8.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
jig	jigbrowser\+	*	cpe:2.3:a:jig:jigbrowser\+::::::::
jig	jigbrowser\+	1.8.0	cpe:2.3:a:jig:jigbrowser\+:1.8.0:::::::*

References

jvn.jp/en/jp/JVN80531230/index.html

jvndb.jvn.jp/jvndb/JVNDB-2014-000108

www.securityfocus.com/bid/70146

www.facebook.com/jigbrowserplus

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

6.4

Confidence

Low

EPSS

0.007

Percentile

81.0%

JSON

Related for NVD:CVE-2014-5318

cve1 jvn1 prion1 cvelist1