Arbitrary Code Execution Vulnerability in Boat Browser Application 8.0 and 8.0.1

Arbitrary Code Execution Vulnerability in Boat Browser Application 8.0 and 8.0.1

CVE-2014-4968 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

The WebView class and use of the WebView.addJavascriptInterface method in the Boat Browser application 8.0 and 8.0.1 for Android allow remote attackers to execute arbitrary code via a crafted web site, a related issue to CVE-2012-6636.

Learn more about our Cis Benchmark Audit For Google Android.