AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2019-14758: An issue was discovered in KaiOS 2.5 and 2.5.1. The pre-installed File Manager application is vulnerable to HTML and Jav

mediumvulnerability

security

Source: NVD/CVE DatabaseSeptember 14, 2020CVE-2019-14758

Summary

KaiOS versions 2.5 and 2.5.1 contain a vulnerability in the File Manager app where attackers can inject HTML and JavaScript (code that runs in web browsers) through malicious email attachments. This allows attackers to manipulate the app's interface, trick users into revealing login credentials, or exploit the app's permissions.

Vulnerability Details

CVSS Score

6.1(medium)

EPSS (30-day exploit probability)

EPSS: 0.2%

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-79

CAPEC (Attack Pattern)

CAPEC-198 CAPEC-86

Original source: https://nvd.nist.gov/vuln/detail/CVE-2019-14758

First tracked: February 15, 2026 at 08:52 PM

Classified by LLM (prompt v3) · confidence: 95%