Kaios@2.5.1 Security Vulnerabilities and Issues — Kaios@2.5.1 CVE List

Lucene search

KaiostechKaios2.5.1

3 matches found

CVE•added 2020/09/14 8:15 p.m.•35 views

CVE-2019-14758

An issue was discovered in KaiOS 2.5 and 2.5.1. The pre-installed File Manager application is vulnerable to HTML and JavaScript injection attacks. An attacker can send a file via email to the victim that will inject HTML into the File Manager application (assuming the victim chooses to download the...

6.1CVSS6.4AI score0.0024EPSS

CVE•added 2020/09/14 8:15 p.m.•34 views

CVE-2019-14757

An issue was discovered in KaiOS 2.5 and 2.5.1. The pre-installed Contacts application is vulnerable to HTML and JavaScript injection attacks. An attacker can send a vCard file to the victim that will inject HTML into the Contacts application (assuming the victim chooses to import the file). At a b...

6.1CVSS6.4AI score0.0024EPSS

CVE•added 2020/09/14 8:15 p.m.•32 views

CVE-2019-14759

An issue was discovered in KaiOS 1.0, 2.5, and 2.5.1. The pre-installed Radio application is vulnerable to HTML and JavaScript injection attacks. A local attacker can inject arbitrary HTML into the Radio application. At a bare minimum, this allows an attacker to take control over the Radio applicat...

4.4CVSS4.9AI score0.00101EPSS