Design/Logic Flaw

2012-12-2617:55:00

PRIOn knowledge base

www.prio-n.com

6.4 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

28.6%

JSON

The Loctouch application 3.4.6 and earlier for Android does not properly handle implicit intents, which allows attackers to obtain sensitive information about logged locations via a crafted application.

CPENameOperatorVersion
loctouchle3.4.6

CPE	Name	Operator	Version
	loctouch	le	3.4.6

References

jvn.jp/en/jp/JVN42625179/index.html

jvndb.jvn.jp/jvndb/JVNDB-2012-000114

play.google.com/store/apps/details?id=com.livedoor.android.folkat