Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-4220
HistoryNov 30, 2012 - 12:54 p.m.

CVE-2012-4220

2012-11-3012:54:16
[email protected]
web.nvd.nist.gov
28
quic diag
android
code execution
dos
diagchar_core.c
cve-2012-4220
nvd

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.6%

JSON

diagchar_core.c in the Qualcomm Innovation Center (QuIC) Diagnostics (aka DIAG) kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service (incorrect pointer dereference) via an application that uses crafted arguments in a local diagchar_ioctl call.

Affected configurations

NVD
Node
googleandroidMatch2.3
OR
googleandroidMatch2.3rev1
OR
googleandroidMatch2.3.1
OR
googleandroidMatch2.3.2
OR
googleandroidMatch2.3.3
OR
googleandroidMatch2.3.4
OR
googleandroidMatch2.3.5
OR
googleandroidMatch2.3.6
OR
googleandroidMatch2.3.7
OR
googleandroidMatch3.0
OR
googleandroidMatch3.1
OR
googleandroidMatch3.2
OR
googleandroidMatch3.2.1
OR
googleandroidMatch3.2.2
OR
googleandroidMatch3.2.4
OR
googleandroidMatch3.2.6
OR
googleandroidMatch4.0
OR
googleandroidMatch4.0.1
OR
googleandroidMatch4.0.2
OR
googleandroidMatch4.0.3
OR
googleandroidMatch4.0.4
OR
googleandroidMatch4.1
OR
googleandroidMatch4.2

Related

prion 1
nvd 1
debiancve 1
ubuntucve 1
cvelist 1
android 2
redhatcve 1
threatpost 1
cert 1
thn 1
prion
prion
Null pointer dereference
2012-11-30 12:54:00
nvd
nvd
CVE-2012-4220
2012-11-30 12:54:16
debiancve
debiancve
CVE-2012-4220
2012-11-30 12:54:16
ubuntucve
ubuntucve
CVE-2012-4220
2012-11-30 00:00:00
cvelist
cvelist
CVE-2012-4220
2012-11-30 11:00:00
android
android
Diaggetroot
2012-12-28 00:00:00
Qualcomm Integer oveflow diagnostics
2012-11-15 00:00:00
redhatcve
redhatcve
CVE-2012-4220
2015-10-30 09:46:20
threatpost
threatpost
Qualcomm Patches Privilege Escalation, DoS Vulnerabilities in Android Devices
2012-12-07 20:06:41
cert
cert
Qualcomm Android OS kernel privilege escalation and denial of service vulnerabilites
2012-12-07 00:00:00
thn
thn
Google Detects Android Spyware That Spies On WhatsApp, Skype Calls
2017-11-27 22:29:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.6%

JSON
Related for CVE-2012-4220
prion1nvd1debiancve1ubuntucve1cvelist1android2redhatcve1threatpost1cert1thn1