Design/Logic Flaw

java/android/webkit/BrowserFrame.java in Android before 4.4 uses the addJavascriptInterface API in conjunction with creating an object of the SearchBoxImpl class, which allows attackers to execute arbitrary Java code by leveraging access to the searchBoxJavaBridge interface at certain Android API...

Buffer overflow

Buffer overflow in an unspecified Android API on the Cisco Desktop Collaboration Experience DX650 allows attackers to execute arbitrary code via vectors that leverage incorrect memory allocation, aka Bug IDs CSCuf93957, CSCug22352, and CSCug22462...

CVE-2013-3399

CVE-2013-3399 affects Cisco Desktop Collaboration Experience DX600/DX650 endpoints via a buffer overflow in an underlying Android API. The flaw arises from insufficient validation of values used to allocate a buffer, enabling an authenticated, local attacker to overflow memory and execute arbitra...

Cisco Desktop Collaboration Experience DX600 Series Potential Code Injection Vulnerability

A vulnerability in an underlying Android Application Programming Interface API utilized by the Cisco Desktop Collaboration Experience DX600 series endpoint could allow an authenticated, local attacker to inject code into the system. The vulnerability is due to insufficient validation of specific...