CVE-2020-11990

Summary

We have resolved a security issue in the camera plugin that could have affected certain Cordova (Android) applications. An attacker who could install (or lead the victim to install) a specially crafted (or malicious) Android application would be able to access pictures taken with the app externally.

Affected Software

VendorProductVersion RangeStatus
n/aApache Cordova ( cordova-plugin-camera )cordova-plugin-camera@4.1.0 and belowaffected

Weaknesses

  • Exposure of Sensitive Information

ADP Enrichment

CVE Program Container

Additional References

References