Lucene search
Apache Cordova Android Security Vulnerabilities
cve
After the Android platform is added to Cordova the first time, or after a project is created using the build scripts, the scripts will fetch Gradle on the first build. However, since the default URI is not using https, it is vulnerable to a MiTM and the Gradle executable is not safe. The severity.....
7.4CVSS
7.3AI Score
0.001EPSS
2018-02-01 09:29 PM
32
cve
Product: Apache Cordova Android 5.2.2 and earlier. The application calls methods of the Log class. Messages passed to these methods (Log.v(), Log.d(), Log.i(), Log.w(), and Log.e()) are stored in a series of circular buffers on the device. By default, a maximum of four 16 KB rotated logs are kept.....
7.5CVSS
7.2AI Score
0.001EPSS
2017-05-09 03:29 PM
25