VYPR
Unrated severityNVD Advisory· Published Mar 3, 2014· Updated Jun 17, 2026

CVE-2014-1939

CVE-2014-1939

Description

java/android/webkit/BrowserFrame.java in Android before 4.4 uses the addJavascriptInterface API in conjunction with creating an object of the SearchBoxImpl class, which allows attackers to execute arbitrary Java code by leveraging access to the searchBoxJavaBridge_ interface at certain Android API levels.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

14
  • cpe:2.3:a:lenovo:shareit:*:*:*:*:*:android:*:*
    Range: <=3.5.88_ww
  • Google/Android13 versions
    cpe:2.3:o:google:android:*:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:o:google:android:*:*:*:*:*:*:*:*range: <=4.3.1
    • cpe:2.3:o:google:android:4.0:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:4.0.1:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:4.0.2:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:4.0.3:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:4.0.4:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:4.1:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:4.1.2:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:4.2:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:4.2.1:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:4.2.2:*:*:*:*:*:*:*
    • cpe:2.3:o:google:android:4.3:*:*:*:*:*:*:*
    • (no CPE)range: < 4.4

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.