CVE-2012-2646
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The Sleipnir Mobile application before 2.1.0 and Sleipnir Mobile Black Edition application before 2.1.0 for Android do not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.
La aplicación Sleipnir Mobile antes de v2.1.0 y Sleipnir Mobile Black Edition antes de v2.1.0 para Android no implementan correctamente la clase WebView, lo que permite a atacantes remotos obtener información sensible a través de una aplicación hecha a mano para tal fin.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-05-14 CVE Reserved
- 2012-07-25 CVE Published
- 2024-09-17 CVE Updated
- 2024-09-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| http://jvn.jp/en/jp/JVN88643450/index.html | Third Party Advisory | |
| http://jvndb.jvn.jp/jvndb/JVNDB-2012-000071 | Third Party Advisory | |
| https://play.google.com/store/apps/details?id=jp.co.fenrir.android.sleipnir | Third Party Advisory | |
| https://play.google.com/store/apps/details?id=jp.co.fenrir.android.sleipnir_black | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Fenrir-inc Search vendor "Fenrir-inc" | Sleipnir Mobile Search vendor "Fenrir-inc" for product "Sleipnir Mobile" | < 2.1.0 Search vendor "Fenrir-inc" for product "Sleipnir Mobile" and version " < 2.1.0" | android |
Affected
| ||||||
| Fenrir-inc Search vendor "Fenrir-inc" | Sleipnir Mobile Search vendor "Fenrir-inc" for product "Sleipnir Mobile" | < 2.1.0 Search vendor "Fenrir-inc" for product "Sleipnir Mobile" and version " < 2.1.0" | black, android |
Affected
| ||||||