CVE-2012-0326

2012-03-1710:00:00

jpcert

www.cve.org

AI Score

6.6

Confidence

Low

EPSS

0.006

Percentile

79.0%

JSON

The twicca application 0.7.0 through 0.9.30 for Android does not properly restrict the use of network privileges, which allows remote attackers to read media files on an SD card via a crafted application.

References

jvn.jp/en/jp/JVN31860555/index.html

jvndb.jvn.jp/jvndb/JVNDB-2012-000024

osvdb.org/80106

twicca.r246.jp/notice/

www.securityfocus.com/bid/52442

exchange.xforce.ibmcloud.com/vulnerabilities/73951

play.google.com/store/apps/details?id=jp.r246.twicca