2.6
CVE-2013-2318
- EPSS 0.29%
- Veröffentlicht 06.06.2013 13:02:14
- Zuletzt bearbeitet 11.04.2025 00:51:21
- Quelle vultures@jpcert.or.jp
- CVE-Watchlists
- Unerledigt
LoginThe Content Provider in the MovatwiTouch application before 1.793 and MovatwiTouch Paid application before 1.793 for Android does not properly restrict access to authorization information, which allows attackers to hijack Twitter accounts via a crafted application.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Jig ≫ Movatwitouch Update- SwPlatformandroid Version <= 1.792
Jig ≫ Movatwitouch Paid Update- SwPlatformandroid Version <= 1.792
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.29% | 0.522 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.6 | 4.9 | 2.9 |
AV:N/AC:H/Au:N/C:P/I:N/A:N
|