Описание
The twicca application 0.7.0 through 0.9.30 for Android does not properly restrict the use of network privileges, which allows remote attackers to read media files on an SD card via a crafted application.
Ссылки
- Patch
- PatchVendor Advisory
- Patch
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:tetsuya_aoyama:twicca:0.7.0:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.8.8:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.4g:rc2:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.4g2:rc2:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.13:rc2:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.13a:rc2:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.13b-rc2:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.16:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.17b:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.20:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.20a:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.20b:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.20c:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.20e:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.26:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.26c:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.26c2:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.30:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.31:*:*:*:*:*:*:*
cpe:2.3:a:tetsuya_aoyama:twicca:0.9.31a:*:*:*:*:*:*:*
cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
EPSS
Процентиль: 66%
0.00516
Низкий
5 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
почти 4 года назад
The twicca application 0.7.0 through 0.9.30 for Android does not properly restrict the use of network privileges, which allows remote attackers to read media files on an SD card via a crafted application.
EPSS
Процентиль: 66%
0.00516
Низкий
5 Medium
CVSS2
Дефекты
CWE-264