Design/Logic Flaw

The Android API before 17 does not properly restrict the WebView.addJavascriptInterface method, which allows remote attackers to execute arbitrary methods of Java objects by using the Java Reflection API within crafted JavaScript code that is loaded into the WebView component in an application...

Buffer overflow

Buffer overflow in an unspecified Android API on the Cisco Desktop Collaboration Experience DX650 allows attackers to execute arbitrary code via vectors that leverage incorrect memory allocation, aka Bug IDs CSCuf93957, CSCug22352, and CSCug22462...

CVE-2013-3399

CVE-2013-3399 affects Cisco Desktop Collaboration Experience DX600/DX650 endpoints via a buffer overflow in an underlying Android API. The flaw arises from insufficient validation of values used to allocate a buffer, enabling an authenticated, local attacker to overflow memory and execute arbitra...

Cisco Desktop Collaboration Experience DX600 Series Potential Code Injection Vulnerability

A vulnerability in an underlying Android Application Programming Interface API utilized by the Cisco Desktop Collaboration Experience DX600 series endpoint could allow an authenticated, local attacker to inject code into the system. The vulnerability is due to insufficient validation of specific...