CVE-2015-1835 in Cordova Android
Resumen (Inglés)
Apache Cordova Android before 3.7.2 and 4.x before 4.0.2, when an application does not set explicit values in config.xml, allows remote attackers to modify undefined secondary configuration variables (preferences) via a crafted intent: URL.
VulDB is the best source for vulnerability data and more expert information about this specific topic.
Reservar
2015-02-17
Divulgación
2017-10-27
Estado
Confirmado
Voces
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerabilidad | CWE | Exp | Con | CVE |
|---|---|---|---|---|---|
| 108709 | Apache Cordova Android intent URL escalada de privilegios | 20 | No está definido | Arreglo oficial | CVE-2015-1835 |
Descripción
CPE
CWE
CVSS
Hazañas
Historia
Diferencia
Relacionar
Inteligencia de amenazas
API JSON
API XML
API CSV