5 matches found
Security Bulletin: A vulnerability affects the Cordova platform packaged with Rational Application Developer (CVE-2015-8320)
Summary A vulnerability has been discovered that affects the Cordova platform packaged with Rational Application Developer. Vulnerability Details CVEID: CVE-2015-8320 DESCRIPTION: Apache Cordova Android could allow a remote attacker to bypass security restrictions, caused by weak randomization of...
CVE-2015-8320
Apache Cordova-Android before 3.7.0 improperly generates random values for BridgeSecret data, which makes it easier for attackers to conduct bridge hijacking attacks by predicting a value...
CVE-2015-8320
CVE-2015-8320 affects Apache Cordova Android before 3.7.0, where BridgeSecret data were generated with weak randomness. This lax randomness enables attackers to predict the BridgeSecret value and perform bridge hijacking attacks. The vulnerability is listed with a CVSS v2 base score of 5.0 (Mediu...
CVE-2015-8320
Apache Cordova-Android before 3.7.0 improperly generates random values for BridgeSecret data, which makes it easier for attackers to conduct bridge hijacking attacks by predicting a value...
CVE-2015-5257
drivers/usb/serial/whiteheat.c in the Linux kernel before 4.2.4 allows physically proximate attackers to cause a denial of service NULL pointer dereference and OOPS or possibly have unspecified other impact via a crafted USB device. NOTE: this ID was incorrectly used for an Apache Cordova issue...