CVE-2020-11990
Description
We have resolved a security issue in the camera plugin that could have affected certain Cordova (Android) applications. An attacker who could install (or lead the victim to install) a specially crafted (or malicious) Android application would be able to access pictures taken with the app externally.
CWE
- (none)
Affected
- n/a / Apache Cordova ( cordova-plugin-camera ) — [email protected] and below [affected]
CVSS
- (none)
References
- https://cordova.apache.org/news/2020/09/18/camera-plugin-release.html x_refsource_MISC
- http://jvn.jp/en/jp/JVN59779918/index.html third-party-advisory, x_refsource_JVN
Source
cvelistV5-main/cves/2020/11xxx/CVE-2020-11990.json