Shodan
Vulnerabilities
Vulnerable Software
Google:  >> Android  >> 2.3  Security Vulnerabilities
CVE-2012-2034
Known exploited
Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and before 11.1.115.9 on Android 4.x, and Adobe AIR before 3.3.0.3610, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2037.
CVSS Score
7.5
EPSS Score
0.256
Published
2012-06-09
CVE-2012-2562
The Xelex MobileTrack application 2.3.7 and earlier for Android does not verify the origin of SMS commands, which allows remote attackers to execute a (1) LOCATE, (2) TRACK, (3) UPDATECFG, (4) UPDATEACCT, (5) STAT, (6) TERM, or (7) WIPE command via an SMS message.
CVSS Score
7.6
EPSS Score
0.01
Published
2012-05-22
CVE-2012-2567
The Xelex MobileTrack application 2.3.7 and earlier for Android uses hardcoded credentials, which allows remote attackers to obtain sensitive information via an unencrypted (1) FTP or (2) HTTP session.
CVSS Score
2.6
EPSS Score
0.007
Published
2012-05-22
CVE-2012-1249
The iLunascape application 1.0.4.0 and earlier for Android does not properly implement the WebView class, which allows remote attackers to obtain sensitive stored information via a crafted application.
CVSS Score
5.0
EPSS Score
0.005
Published
2012-05-21
CVE-2012-0779
Adobe Flash Player before 10.3.183.19 and 11.x before 11.2.202.235 on Windows, Mac OS X, and Linux; before 11.1.111.9 on Android 2.x and 3.x; and before 11.1.115.8 on Android 4.x allows remote attackers to execute arbitrary code via a crafted file, related to an "object confusion vulnerability," as exploited in the wild in May 2012.
CVSS Score
9.3
EPSS Score
0.901
Published
2012-05-04
CVE-2012-1243
The TwitRocker2 application before 1.0.23 for Android does not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.
CVSS Score
5.0
EPSS Score
0.005
Published
2012-04-22
CVE-2012-0326
The twicca application 0.7.0 through 0.9.30 for Android does not properly restrict the use of network privileges, which allows remote attackers to read media files on an SD card via a crafted application.
CVSS Score
5.0
EPSS Score
0.005
Published
2012-03-17
CVE-2012-1481
Unspecified vulnerability in the Textdroid (com.app.android.textdroid) application 2.5.2 for Android has unknown impact and attack vectors.
CVSS Score
10.0
EPSS Score
0.004
Published
2012-03-15
CVE-2012-1482
Unspecified vulnerability in the TouchPal Contacts (com.cootek.smartdialer) application 3.3.1 and 4.0.1 for Android has unknown impact and attack vectors.
CVSS Score
10.0
EPSS Score
0.004
Published
2012-03-15
CVE-2012-1483
Unspecified vulnerability in the Message Forwarder (com.gmail.zbnetium) application 1.12.20110409.1 for Android has unknown impact and attack vectors.
CVSS Score
10.0
EPSS Score
0.004
Published
2012-03-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved