// For flags

CVE-2012-4221

 

Severity Score

6.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Integer overflow in diagchar_core.c in the Qualcomm Innovation Center (QuIC) Diagnostics (aka DIAG) kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service via an application that uses crafted arguments in a local diagchar_ioctl call.

Un desbordamiento de entero en diagchar_core.c en el controlador en modo kernel del Qualcomm Innovation Center (QuIC) Diagnostics (también conocido como DIAG) para Android v2.3 a v4.2, permite a atacantes remotos ejecutar código de su elección o causar una denegación de servicio a través de argumentos elaborados a través de una aplicación que utiliza argumentos modificados en una llamada diagchar_ioctl.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2012-08-08 CVE Reserved
  • 2012-11-30 CVE Published
  • 2023-06-18 EPSS Updated
  • 2024-08-06 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-189: Numeric Errors
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
2.3
Search vendor "Google" for product "Android" and version "2.3"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
2.3
Search vendor "Google" for product "Android" and version "2.3"
rev1
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
2.3.1
Search vendor "Google" for product "Android" and version "2.3.1"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
2.3.2
Search vendor "Google" for product "Android" and version "2.3.2"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
2.3.3
Search vendor "Google" for product "Android" and version "2.3.3"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
2.3.4
Search vendor "Google" for product "Android" and version "2.3.4"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
2.3.5
Search vendor "Google" for product "Android" and version "2.3.5"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
2.3.6
Search vendor "Google" for product "Android" and version "2.3.6"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
2.3.7
Search vendor "Google" for product "Android" and version "2.3.7"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
3.0
Search vendor "Google" for product "Android" and version "3.0"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
3.1
Search vendor "Google" for product "Android" and version "3.1"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
3.2
Search vendor "Google" for product "Android" and version "3.2"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
3.2.1
Search vendor "Google" for product "Android" and version "3.2.1"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
3.2.2
Search vendor "Google" for product "Android" and version "3.2.2"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
3.2.4
Search vendor "Google" for product "Android" and version "3.2.4"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
3.2.6
Search vendor "Google" for product "Android" and version "3.2.6"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
4.0
Search vendor "Google" for product "Android" and version "4.0"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
4.0.1
Search vendor "Google" for product "Android" and version "4.0.1"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
4.0.2
Search vendor "Google" for product "Android" and version "4.0.2"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
4.0.3
Search vendor "Google" for product "Android" and version "4.0.3"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
4.0.4
Search vendor "Google" for product "Android" and version "4.0.4"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
4.1
Search vendor "Google" for product "Android" and version "4.1"
-
Affected
Google
Search vendor "Google"
Android
Search vendor "Google" for product "Android"
4.2
Search vendor "Google" for product "Android" and version "4.2"
-
Affected