Lucene search

[email protected]CVE-2012-0322

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2012-0322

2022-10-0316:15:40

CWE-264

[email protected]

web.nvd.nist.gov

estrongs

es file explorer

android

remote attack

arbitrary files

security vulnerability

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

6.9 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.8%

JSON

The EStrongs ES File Explorer application 1.6.0.2 through 1.6.1.1 for Android does not properly restrict access, which allows remote attackers to read arbitrary files via vectors involving an unspecified function.

Affected configurations

NVD

Node

estrongses_file_explorerMatch1.6.0.2android

estrongses_file_explorerMatch1.6.1.1android

AND

googleandroid

CPENameOperatorVersion
estrongs:es_file_explorerestrongs es file explorereq1.6.0.2
estrongs:es_file_explorerestrongs es file explorereq1.6.1.1

CPE	Name	Operator	Version
estrongs:es_file_explorer	estrongs es file explorer	eq	1.6.0.2
estrongs:es_file_explorer	estrongs es file explorer	eq	1.6.1.1

References

jvn.jp/en/jp/JVN08871006/index.html

jvndb.jvn.jp/jvndb/JVNDB-2012-000020

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

6.9 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.8%

JSON

Related for CVE-2012-0322

prion1 cvelist1 jvn1 nvd1