CVE-2014-6602

Microsoft Asha OS on the Microsoft Mobile Nokia Asha 501 phone 14.0.4 allows physically proximate attackers to bypass the lock-screen protection mechanism, and read or modify contact information or dial arbitrary telephone numbers, by tapping the SOS Option and then tapping the Green Call Option.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.6 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 71%
VendorProductVersion
microsoftnokia_asha_501_software
14.0.4
microsoftnokia_asha_501
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://packetstormsecurity.com/files/128320/Nokia-Asha-501-Lock-Bypass.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/96195
http://packetstormsecurity.com/files/128320/Nokia-Asha-501-Lock-Bypass.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/96195