Lucene search

[email protected]CVE-2013-0720

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2013-0720

2022-10-0316:15:03

CWE-264

[email protected]

web.nvd.nist.gov

cobime

application security

android

permissions

sensitive information

vulnerability

cve-2013-0720

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

53.5%

JSON

The COBIME application before 0.9.4 for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local filesystem.

Affected configurations

NVD

Node

cob\'s_productscobimeRange≤0.9.3-android

cob\'s_productscobimeMatch0.9.2-android

CPENameOperatorVersion
cob\'s_products:cobimecob's products cobimele0.9.3
cob\'s_products:cobimecob's products cobimeeq0.9.2

CPE	Name	Operator	Version
cob\'s_products:cobime	cob's products cobime	le	0.9.3
cob\'s_products:cobime	cob's products cobime	eq	0.9.2

References

jvn.jp/en/jp/JVN11249169/index.html

jvndb.jvn.jp/jvndb/JVNDB-2013-000027

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

53.5%

JSON

Related for CVE-2013-0720

cvelist1 prion1 jvn1 nvd1