Vulnerability Data

CVE-2019-0219

Track security vulnerabilities

A website running in the InAppBrowser webview on Android could execute arbitrary JavaScript in the main application's webview using a specially crafted gap-iab: URI.

Published at
2020-01-14
733 days ago
Modified
2021-07-20
180 days ago
2019
Year
The year of the turtle

https://www.oracle.com//security-alerts/cpujul2021.html

MISC:https://www.oracle.com//security-alerts/cpujul2021.html

Read More about itMore info

https://www.oracle.com/security-alerts/cpuApr2021.html

MISC:https://www.oracle.com/security-alerts/cpuApr2021.html

Read More about itMore info

https://lists.apache.org/thread.html/197482d5ab80c0bff4a5ec16e1b0466df38389d9a4b5331d777f14fc%40%3Cdev.cordova.apache.org%3E

MLIST:[cordova-dev] 20191128 CVE-2019-0219: Apache Cordova InAppBrowser Privilege Escalation (Android)

Read More about itMore info

http://www.openwall.com/lists/oss-security/2019/11/28/1

MLIST:[oss-security] 20191127 CVE-2019-0219: Apache Cordova InAppBrowser Privilege Escalation (Android)

Read More about itMore info

Vulnerability RAW

{
	"Title": {
		"_text": "CVE-2019-0219"
	},
	"Notes": {
		"Note": [
			{
				"_text": "A website running in the InAppBrowser webview on Android could execute arbitrary JavaScript in the main application's webview using a specially crafted gap-iab: URI."
			},
			{
				"_text": "2020-01-14"
			},
			{
				"_text": "2021-07-20"
			}
		]
	},
	"CVE": {
		"_text": "CVE-2019-0219"
	},
	"References": {
		"Reference": [
			{
				"URL": {
					"_text": "https://www.oracle.com//security-alerts/cpujul2021.html"
				},
				"Description": {
					"_text": "MISC:https://www.oracle.com//security-alerts/cpujul2021.html"
				}
			},
			{
				"URL": {
					"_text": "https://www.oracle.com/security-alerts/cpuApr2021.html"
				},
				"Description": {
					"_text": "MISC:https://www.oracle.com/security-alerts/cpuApr2021.html"
				}
			},
			{
				"URL": {
					"_text": "https://lists.apache.org/thread.html/197482d5ab80c0bff4a5ec16e1b0466df38389d9a4b5331d777f14fc%40%3Cdev.cordova.apache.org%3E"
				},
				"Description": {
					"_text": "MLIST:[cordova-dev] 20191128 CVE-2019-0219: Apache Cordova InAppBrowser Privilege Escalation (Android)"
				}
			},
			{
				"URL": {
					"_text": "http://www.openwall.com/lists/oss-security/2019/11/28/1"
				},
				"Description": {
					"_text": "MLIST:[oss-security] 20191127 CVE-2019-0219: Apache Cordova InAppBrowser Privilege Escalation (Android)"
				}
			}
		]
	}
}