Lucene search

K

CertccCVELIST:CVE-2012-2562

HistoryMay 22, 2012 - 3:00 p.m.

CVE-2012-2562

2012-05-2215:00:00

certcc

www.cve.org

7.1 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.9%

The Xelex MobileTrack application 2.3.7 and earlier for Android does not verify the origin of SMS commands, which allows remote attackers to execute a (1) LOCATE, (2) TRACK, (3) UPDATECFG, (4) UPDATEACCT, (5) STAT, (6) TERM, or (7) WIPE command via an SMS message.

References

blog.mobiledefense.com/2012/05/mobile-defense-finds-two-security-vulnerabilities-in-xelex-mobiletrack/

secunia.com/advisories/49268

www.kb.cert.org/vuls/id/464683

www.securityfocus.com/bid/53634

exchange.xforce.ibmcloud.com/vulnerabilities/75782

7.1 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.9%

Related for CVELIST:CVE-2012-2562

nvd1 prion1 cve1 cert1