Lucene search

[email protected]NVD:CVE-2013-2304

HistoryApr 16, 2013 - 2:04 p.m.

CVE-2013-2304

2013-04-1614:04:31

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

65.8%

JSON

The Sleipnir Mobile application 2.8.0 and earlier and Sleipnir Mobile Black Edition application 2.8.0 and earlier for Android allow remote attackers to load arbitrary Extension APIs, and trigger downloads or obtain sensitive HTTP response-body information, via a crafted web page.

Affected configurations

Nvd

Node

fenrir-incsleipnir_mobileRange≤2.8.0

fenrir-incsleipnir_mobileMatch1.0.0alpha

fenrir-incsleipnir_mobileMatch1.0.0beta_update1

fenrir-incsleipnir_mobileMatch1.0.0rc

fenrir-incsleipnir_mobileMatch1.1.0

fenrir-incsleipnir_mobileMatch1.2.0

fenrir-incsleipnir_mobileMatch1.3.0

fenrir-incsleipnir_mobileMatch1.4.0

fenrir-incsleipnir_mobileMatch1.5.0

fenrir-incsleipnir_mobileMatch1.5.1

fenrir-incsleipnir_mobileMatch1.6.0

fenrir-incsleipnir_mobileMatch1.7.0

fenrir-incsleipnir_mobileMatch1.7.1

fenrir-incsleipnir_mobileMatch2.0.0

fenrir-incsleipnir_mobileMatch2.0.1

fenrir-incsleipnir_mobileMatch2.0.2

fenrir-incsleipnir_mobileMatch2.0.3

fenrir-incsleipnir_mobileMatch2.0.4

fenrir-incsleipnir_mobileMatch2.1.0

fenrir-incsleipnir_mobileMatch2.2.0

fenrir-incsleipnir_mobileMatch2.2.1

fenrir-incsleipnir_mobileMatch2.2.2

fenrir-incsleipnir_mobileMatch2.2.3

fenrir-incsleipnir_mobileMatch2.3.0

fenrir-incsleipnir_mobileMatch2.4.0

fenrir-incsleipnir_mobileMatch2.4.1

fenrir-incsleipnir_mobileMatch2.5.0

fenrir-incsleipnir_mobileMatch2.5.1

fenrir-incsleipnir_mobileMatch2.6.0

fenrir-incsleipnir_mobileMatch2.7.0

AND

googleandroid

Node

fenrir-incsleipnir_mobileRange≤2.8.0-black

fenrir-incsleipnir_mobileMatch1.0.0alphablack

fenrir-incsleipnir_mobileMatch1.0.0beta_update1black

fenrir-incsleipnir_mobileMatch1.0.0rcblack

fenrir-incsleipnir_mobileMatch1.1.0-black

fenrir-incsleipnir_mobileMatch1.2.0-black

fenrir-incsleipnir_mobileMatch1.3.0-black

fenrir-incsleipnir_mobileMatch1.4.0-black

fenrir-incsleipnir_mobileMatch1.5.0-black

fenrir-incsleipnir_mobileMatch1.5.1-black

fenrir-incsleipnir_mobileMatch1.6.0-black

fenrir-incsleipnir_mobileMatch1.7.0-black

fenrir-incsleipnir_mobileMatch1.7.1-black

fenrir-incsleipnir_mobileMatch2.0.0-black

fenrir-incsleipnir_mobileMatch2.0.1-black

fenrir-incsleipnir_mobileMatch2.0.2-black

fenrir-incsleipnir_mobileMatch2.0.3-black

fenrir-incsleipnir_mobileMatch2.0.4-black

fenrir-incsleipnir_mobileMatch2.1.0-black

fenrir-incsleipnir_mobileMatch2.2.0-black

fenrir-incsleipnir_mobileMatch2.2.1-black

fenrir-incsleipnir_mobileMatch2.2.2-black

fenrir-incsleipnir_mobileMatch2.2.3-black

fenrir-incsleipnir_mobileMatch2.3.0-black

fenrir-incsleipnir_mobileMatch2.4.0-black

fenrir-incsleipnir_mobileMatch2.4.1-black

fenrir-incsleipnir_mobileMatch2.5.0-black

fenrir-incsleipnir_mobileMatch2.5.1-black

fenrir-incsleipnir_mobileMatch2.6.0-black

fenrir-incsleipnir_mobileMatch2.7.0-black

AND

googleandroid

VendorProductVersionCPE
fenrir-incsleipnir_mobile*cpe:2.3:a:fenrir-inc:sleipnir_mobile:*:*:*:*:*:*:*:*
fenrir-incsleipnir_mobile1.0.0cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.0.0:alpha:*:*:*:*:*:*
fenrir-incsleipnir_mobile1.0.0cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.0.0:beta_update1:*:*:*:*:*:*
fenrir-incsleipnir_mobile1.0.0cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.0.0:rc:*:*:*:*:*:*
fenrir-incsleipnir_mobile1.1.0cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.1.0:*:*:*:*:*:*:*
fenrir-incsleipnir_mobile1.2.0cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.2.0:*:*:*:*:*:*:*
fenrir-incsleipnir_mobile1.3.0cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.3.0:*:*:*:*:*:*:*
fenrir-incsleipnir_mobile1.4.0cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.4.0:*:*:*:*:*:*:*
fenrir-incsleipnir_mobile1.5.0cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.5.0:*:*:*:*:*:*:*
fenrir-incsleipnir_mobile1.5.1cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.5.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
fenrir-inc	sleipnir_mobile	*	cpe:2.3:a:fenrir-inc:sleipnir_mobile::::::::
fenrir-inc	sleipnir_mobile	1.0.0	cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.0.0:alpha::::::
fenrir-inc	sleipnir_mobile	1.0.0	cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.0.0:beta_update1::::::
fenrir-inc	sleipnir_mobile	1.0.0	cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.0.0:rc::::::
fenrir-inc	sleipnir_mobile	1.1.0	cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.1.0:::::::*
fenrir-inc	sleipnir_mobile	1.2.0	cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.2.0:::::::*
fenrir-inc	sleipnir_mobile	1.3.0	cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.3.0:::::::*
fenrir-inc	sleipnir_mobile	1.4.0	cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.4.0:::::::*
fenrir-inc	sleipnir_mobile	1.5.0	cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.5.0:::::::*
fenrir-inc	sleipnir_mobile	1.5.1	cpe:2.3:a:fenrir-inc:sleipnir_mobile:1.5.1:::::::*

Rows per page:

1-10 of 611

References

jvn.jp/en/jp/JVN02895867/index.html

jvndb.jvn.jp/jvndb/JVNDB-2013-000033

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

65.8%

JSON

Related for NVD:CVE-2013-2304

jvn1 prion1 cvelist1 cve1