CVE-2012-2217

EPSS 0.38%
Veröffentlicht 01.05.2012 14:55:01
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

The HTC IQRD service for Android on the HTC EVO 4G before 4.67.651.3, EVO Design 4G before 2.12.651.5, Shift 4G before 2.77.651.3, EVO 3D before 2.17.651.5, EVO View 4G before 2.23.651.1, Vivid before 3.26.502.56, and Hero does not restrict localhost access to TCP port 2479, which allows remote attackers to (1) send SMS messages, (2) obtain the Network Access Identifier (NAI) and its password, or trigger (3) popup messages or (4) tones via a crafted application that leverages the android.permission.INTERNET permission.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Htc ≫ Evo 4g Software Version <= 4.54.651.1

Htc ≫ Evo 4g Software Version1.32.651.1

Htc ≫ Evo 4g Software Version1.47.651.1

Htc ≫ Evo 4g Software Version3.26.651.6

Htc ≫ Evo 4g Software Version3.29.651.5

Htc ≫ Evo 4g Software Version3.30.651.2

Htc ≫ Evo 4g Software Version3.30.651.3

Htc ≫ Evo 4g Software Version3.70.651.1

Htc ≫ Evo 4g Software Version4.22.651.2

Htc ≫ Evo 4g Software Version4.24.651.1

Htc ≫ Evo 4g Software Version4.53.651.1

Htc ≫ Evo 4g Version-

Htc ≫ Evo 4g Versiongri40

Htc ≫ Evo Design 4g Software Version <= 1.19.651.1

Htc ≫ Evo Design 4g Software Version1.19.651.0

Htc ≫ Evo Design 4g Version-

Htc ≫ Shift 4g Software Version <= 2.76.651.6

Htc ≫ Shift 4g Software Version1.17.651.1

Htc ≫ Shift 4g Software Version2.75.651.4

Htc ≫ Shift 4g Software Version2.75.651.5

Htc ≫ Shift 4g Version-

Htc ≫ Evo 3d Software Version <= 2.08.651.3

Htc ≫ Evo 3d Software Version1.11.651.3

Htc ≫ Evo 3d Software Version1.13.651.7

Htc ≫ Evo 3d Software Version2.08.651.2

Htc ≫ Evo 3d

Htc ≫ Evo 3d Versiongri40

Htc ≫ Evo View 4g Software Version <= 1.22.651.2

Htc ≫ Evo View 4g Software Version1.22.651.1

Htc ≫ Evo View 4g Version-

Htc ≫ Vivid Software Version <= 3.26.502

Htc ≫ Vivid Version-

Htc ≫ Hero Software Version1.29.651.1

Htc ≫ Hero Software Version1.56.651.2

Htc ≫ Hero Software Version2.27.651.5

Htc ≫ Hero Software Version2.27.651.6

Htc ≫ Hero Software Version2.31.651.7

Htc ≫ Hero Software Version2.32.651.2

Htc ≫ Hero Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.38%	0.563

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.4	10	4.9	AV:N/AC:L/Au:N/C:P/I:P/A:N

http://archives.neohapsis.com/archives/bugtraq/2012-04/0176.html

http://www.securityfocus.com/bid/53187

http://www.vsecurity.com/resources/advisory/20120420-1/

https://exchange.xforce.ibmcloud.com/vulnerabilities/75080

https://nvd.nist.gov/vuln/detail/CVE-2012-2217

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-2217

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-2217

EUVD