Description
We have resolved a security issue in the camera plugin that could have affected certain Cordova (Android) applications. An attacker who could install (or lead the victim to install) a specially crafted (or malicious) Android application would be able to access pictures taken with the app externally.
Remediation
References
http://jvn.jp/en/jp/JVN59779918/index.html
https://cordova.apache.org/news/2020/09/18/camera-plugin-release.html
Related Vulnerabilities
CVE-2018-9206 Vulnerability in npm package blueimp-file-upload
CVE-2023-26107 Vulnerability in npm package sketchsvg
CVE-2020-15231 Vulnerability in maven package org.mapfish.print:print-lib
CVE-2023-31826 Vulnerability in maven package org.skyscreamer:nevado-jms
CVE-2021-4264 Vulnerability in maven package org.webjars.bower:dustjs-linkedin