CVE-2012-0326

The twicca application 0.7.0 through 0.9.30 for Android does not properly restrict the use of network privileges, which allows remote attackers to read media files on an SD card via a crafted application.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
jpcertCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 65%
VendorProductVersion
tetsuya_aoyamatwicca
0.7.0
tetsuya_aoyamatwicca
0.8.8
tetsuya_aoyamatwicca
0.9.4g:g
tetsuya_aoyamatwicca
0.9.4g2:g2
tetsuya_aoyamatwicca
0.9.13:rc2
tetsuya_aoyamatwicca
0.9.13a:a
tetsuya_aoyamatwicca
0.9.13b-rc2:b
tetsuya_aoyamatwicca
0.9.16
tetsuya_aoyamatwicca
0.9.17b:b
tetsuya_aoyamatwicca
0.9.20
tetsuya_aoyamatwicca
0.9.20a:a
tetsuya_aoyamatwicca
0.9.20b:b
tetsuya_aoyamatwicca
0.9.20c:c
tetsuya_aoyamatwicca
0.9.20e:e
tetsuya_aoyamatwicca
0.9.26
tetsuya_aoyamatwicca
0.9.26c:c
tetsuya_aoyamatwicca
0.9.26c2:c2
tetsuya_aoyamatwicca
0.9.30
tetsuya_aoyamatwicca
0.9.31
tetsuya_aoyamatwicca
0.9.31a:a
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://jvn.jp/en/jp/JVN31860555/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2012-000024
http://osvdb.org/80106
http://twicca.r246.jp/notice/
http://www.securityfocus.com/bid/52442
https://exchange.xforce.ibmcloud.com/vulnerabilities/73951
https://play.google.com/store/apps/details?id=jp.r246.twicca
http://jvn.jp/en/jp/JVN31860555/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2012-000024
http://osvdb.org/80106
http://twicca.r246.jp/notice/
http://www.securityfocus.com/bid/52442
https://exchange.xforce.ibmcloud.com/vulnerabilities/73951
https://play.google.com/store/apps/details?id=jp.r246.twicca