CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-2980

The Samsung and HTC onTouchEvent method implementation for Android on the T-Mobile myTouch 3G Slide, HTC Merge, Sprint EVO Shift 4G, HTC ChaCha, AT&T Status, HTC Desire Z, T-Mobile G2, T-Mobile myTouch 4G Slide, and Samsung Galaxy S stores touch coordinates in the dmesg buffer, which allows remote attackers to obtain sensitive information via a crafted application, as demonstrated by PIN numbers, telephone numbers, and text messages.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.011

EPSS Ranking 76.7%

CVSS Severity

CVSS v2 Score 7.1

References

Products affected by CVE-2012-2980

Att » Status » Version: N/A

cpe:2.3:h:att:status:-
Htc » Chacha » Version: N/A

cpe:2.3:h:htc:chacha:-
Htc » Desire » Version: N/A

cpe:2.3:h:htc:desire:-
Htc » Merge » Version: N/A

cpe:2.3:h:htc:merge:-
Samsung » Galaxy S » Version: N/A

cpe:2.3:h:samsung:galaxy_s:-
Sprint » Evo Shift 4g » Version: N/A

cpe:2.3:h:sprint:evo_shift_4g:-
T-Mobile » G2 » Version: N/A

cpe:2.3:h:t-mobile:g2:-
T-Mobile » Mytouch 3g Slide » Version: N/A

cpe:2.3:h:t-mobile:mytouch_3g_slide:-
T-Mobile » Mytouch 4g Slide » Version: N/A

cpe:2.3:h:t-mobile:mytouch_4g_slide:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-2980

Products

Pricing

Contact Us