Apache Cordova Android before 3.5.1 allows remote attackers to bypass the HTTP whitelist and connect to arbitrary servers by using JavaScript to open WebSocket connections through WebView.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2014-11-15T21:00:00

Updated: 2024-08-06T10:43:06.342Z

Reserved: 2014-05-14T00:00:00

Link: CVE-2014-3501

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2014-11-15T21:59:03.023

Modified: 2024-11-21T02:08:14.553

Link: CVE-2014-3501

cve-icon Redhat

No data.