CVE-2020-25203
N/A
N/A
Summary
The Framer Preview application 12 for Android exposes com.framer.viewer.FramerViewActivity to other applications. By calling the intent with the action set to android.intent.action.VIEW, any other application is able to load any website/web content into the application's context, which is shown as a full-screen overlay to the user.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://rcesecurity.com
- http://packetstormsecurity.com/files/159264/Framer-Preview-12-Content-Injection.html
References
- https://rcesecurity.com
- http://packetstormsecurity.com/files/159264/Framer-Preview-12-Content-Injection.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.