What is the severity of CVE-2014-1885?

CVE-2014-1885 is considered a critical vulnerability due to its potential to allow remote code execution.

How do I fix CVE-2014-1885?

To fix CVE-2014-1885, upgrade the ForzeArmate application to a version that does not rely on Adobe PhoneGap 2.9.0 or earlier.

What systems are affected by CVE-2014-1885?

CVE-2014-1885 affects the ForzeArmate application on Android devices when using Adobe PhoneGap 2.9.0 or earlier.

What types of attacks are possible with CVE-2014-1885?

CVE-2014-1885 allows attackers to execute arbitrary JavaScript code, potentially compromising external storage access.

Who can be targeted by CVE-2014-1885?

CVE-2014-1885 can target any user of the ForzeArmate app running on affected versions of Adobe PhoneGap.

Vulnerability/
CVE-2014-1885

medium

6.4

CWE

264

3/3/2014

6/8/2024

CVE-2014-1885

First published: Mon Mar 03 2014(Updated: )

The ForzeArmate application for Android, when Adobe PhoneGap 2.9.0 or earlier is used, allows remote attackers to execute arbitrary JavaScript code, and consequently obtain write access to external-storage resources, by leveraging control over any Google syndication advertising domain.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Hsgroup Forzearmate
Adobe PhoneGap	=2.0.0
Adobe PhoneGap	=2.0.0-rc1
Adobe PhoneGap	=2.1.0
Adobe PhoneGap	=2.2.0
Adobe PhoneGap	=2.2.0-rc1
Adobe PhoneGap	=2.2.0-rc2
Adobe PhoneGap	=2.3.0
Adobe PhoneGap	=2.3.0-rc1
Adobe PhoneGap	=2.3.0-rc2
Adobe PhoneGap	=2.4.0
Adobe PhoneGap	=2.4.0-rc1
Adobe PhoneGap	=2.5.0
Adobe PhoneGap	=2.5.0-rc1
Adobe PhoneGap	=2.6.0
Adobe PhoneGap	=2.6.0-rc1
Adobe PhoneGap	=2.7.0
Adobe PhoneGap	=2.7.0-rc1
Adobe PhoneGap	=2.8.0
Adobe PhoneGap	=2.8.1
Adobe PhoneGap	=2.9.0
Adobe PhoneGap	=2.9.0-rc1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-1885?
CVE-2014-1885 is considered a critical vulnerability due to its potential to allow remote code execution.
How do I fix CVE-2014-1885?
To fix CVE-2014-1885, upgrade the ForzeArmate application to a version that does not rely on Adobe PhoneGap 2.9.0 or earlier.
What systems are affected by CVE-2014-1885?
CVE-2014-1885 affects the ForzeArmate application on Android devices when using Adobe PhoneGap 2.9.0 or earlier.
What types of attacks are possible with CVE-2014-1885?
CVE-2014-1885 allows attackers to execute arbitrary JavaScript code, potentially compromising external storage access.
Who can be targeted by CVE-2014-1885?
CVE-2014-1885 can target any user of the ForzeArmate app running on affected versions of Adobe PhoneGap.

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/weakness
agent/references
agent/severity
agent/tags
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
vendor/hsgroup
canonical/hsgroup forzearmate
vendor/adobe
canonical/adobe phonegap
version/adobe phonegap/2.0.0
version/adobe phonegap/2.0.0-rc1
version/adobe phonegap/2.1.0
version/adobe phonegap/2.2.0
version/adobe phonegap/2.2.0-rc1
version/adobe phonegap/2.2.0-rc2
version/adobe phonegap/2.3.0
version/adobe phonegap/2.3.0-rc1
version/adobe phonegap/2.3.0-rc2
version/adobe phonegap/2.4.0
version/adobe phonegap/2.4.0-rc1
version/adobe phonegap/2.5.0
version/adobe phonegap/2.5.0-rc1
version/adobe phonegap/2.6.0
version/adobe phonegap/2.6.0-rc1
version/adobe phonegap/2.7.0
version/adobe phonegap/2.7.0-rc1
version/adobe phonegap/2.8.0
version/adobe phonegap/2.8.1
version/adobe phonegap/2.9.0
version/adobe phonegap/2.9.0-rc1