All blog posts tagged "Vulnerability"

CVE-2015-5256: Apache Cordova vulnerable to improper application of whitelist restrictions on Android

[UPDATE Feb. 24, 2016]Cordova has updated their announcement regarding CVE-2015-5256. Follow the link for more information: http://cordova.apache.org/announcements/2015/11/20/security.html.

CVE-2015-5257/CVE-2015-8320: Weak Randomization of BridgeSecret for Apache Cordova Android

As of November 25, 2015, this blog post acknowledges that IBM is aware that Cordova announced two CVEs for vulnerabilities...

CVE-2015-5204 HTTP header injection vulnerability in Apache Cordova Android File-Transfer Plugin

As of October 6, 2015, this blog post acknowledges that IBM is aware of the recent vulnerability in the Apache...

CVE-2015-1835: Remote exploit in Apache Cordova

As of June 5th 2015, this blog post acknowledges that IBM is aware of a recently published remote exploitation in...

OpenSSL Security Alert for existing apps in Google Play Store

If you have a Worklight Foundation or MobileFirst Platform Foundation application deployed in the Google Play Store, you may soon...