Lucene search
MitreCVE-2012-6334HistoryDec 31, 2012 - 11:50 a.m.
CVE-2012-6334
2012-12-3111:50:28
CWE-264
mitre
web.nvd.nist.gov
21
cve-2012-6334
samsungdive
android
samsung galaxy
location apis
gps spoofing
security vulnerability
nvd
CVSS2
2.9
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:A/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.8
Confidence
Low
EPSS
0.001
Percentile
24.3%
The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices does not properly implement Location APIs, which allows physically proximate attackers to provide arbitrary location data via a “commonly available simple GPS location spoofer.”
Affected configurations
Node
samsungsamsungdiveMatch-
samsunggalaxy_note_2Match-
ORsamsunggalaxy_sMatch-
ORsamsunggalaxy_s2Match-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| samsung | samsungdive | - | cpe:2.3:a:samsung:samsungdive:-:*:*:*:*:*:*:* |
| samsung | galaxy_note_2 | - | cpe:2.3:h:samsung:galaxy_note_2:-:*:*:*:*:*:*:* |
| samsung | galaxy_s | - | cpe:2.3:h:samsung:galaxy_s:-:*:*:*:*:*:*:* |
| samsung | galaxy_s2 | - | cpe:2.3:h:samsung:galaxy_s2:-:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2012-12-31 11:50:00
nvd
nvd
CVE-2012-6334
2012-12-31 11:50:28
cvelist
cvelist
CVE-2012-6334
2012-12-31 11:00:00
CVSS2
2.9
Attack Vector
ADJACENT_NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:A/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.8
Confidence
Low
EPSS
0.001
Percentile
24.3%
Related for CVE-2012-6334