Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
java/android/webkit/BrowserFrame.java in Android before 4.4 uses the addJavascriptInterface API in conjunction with creating an object of the SearchBoxImpl class, which allows attackers to execute arbitrary Java code by leveraging access to the searchBoxJavaBridge_ interface at certain Android API levels.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Android 代码注入漏洞
Vulnerability Description
Google Chrome是美国谷歌(Google)公司开发的一款Web浏览器。Android是美国谷歌(Google)公司和开放手持设备联盟(简称OHA)共同开发的一套以Linux为基础的开源操作系统。 Android 4.3.1及之前的版本中的java/android/webkit/BrowserFrame.java文件中存在安全漏洞,该漏洞源于程序使用addJavascriptInterface API并创建SearchBoxImpl类的对象。攻击者可通过访问searchBoxJavaBridge_
CVSS Information
N/A
Vulnerability Type
N/A