Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-2548

Malware in sbrugna...

7.6CVSS6.4AI score0.022EPSS
Exploits0References7
NVD
NVD
added 2012/05/22 3:55 p.m.14 views

CVE-2012-2562

The Xelex MobileTrack application 2.3.7 and earlier for Android does not verify the origin of SMS commands, which allows remote attackers to execute a 1 LOCATE, 2 TRACK, 3 UPDATECFG, 4 UPDATEACCT, 5 STAT, 6 TERM, or 7 WIPE command via an SMS message...

7.6CVSS7.1AI score0.022EPSS
Exploits0References5
NVD
NVD
added 2012/05/22 3:55 p.m.19 views

CVE-2012-2567

The Xelex MobileTrack application 2.3.7 and earlier for Android uses hardcoded credentials, which allows remote attackers to obtain sensitive information via an unencrypted 1 FTP or 2 HTTP session...

2.6CVSS6.3AI score0.01412EPSS
Exploits0References5
Prion
Prion
added 2012/05/22 3:55 p.m.17 views

Hardcoded credentials

The Xelex MobileTrack application 2.3.7 and earlier for Android uses hardcoded credentials, which allows remote attackers to obtain sensitive information via an unencrypted 1 FTP or 2 HTTP session...

2.6CVSS6.8AI score0.01412EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2012/05/22 3:55 p.m.14 views

Command injection

The Xelex MobileTrack application 2.3.7 and earlier for Android does not verify the origin of SMS commands, which allows remote attackers to execute a 1 LOCATE, 2 TRACK, 3 UPDATECFG, 4 UPDATEACCT, 5 STAT, 6 TERM, or 7 WIPE command via an SMS message...

7.6CVSS7.7AI score0.022EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2012/05/22 3:0 p.m.54 views

CVE-2012-2567

The CVE-2012-2567 entry refers to Xelex MobileTrack for Android (2.3.7 and earlier) that uses hardcoded credentials and transmits data over an insecure FTP/HTTP session, exposing potentially sensitive user data. Root cause: information exposure due to non-secure authentication/storage configurati...

2.6CVSS6.5AI score0.01412EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2012/05/22 3:0 p.m.54 views

CVE-2012-2562

The CVE-2012-2562 entry concerns Xelex MobileTrack for Android (≤ 2.3.7). The issue is lack of verification of SMS command origin, allowing an unauthenticated remote attacker to issue commands (LOCATE, TRACK, UPDATECFG, UPDATEACCT, STAT, TERM, WIPE) via SMS. Consequences cited include possible un...

7.6CVSS7.3AI score0.022EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2012/05/22 3:0 p.m.22 views

CVE-2012-2562

The Xelex MobileTrack application 2.3.7 and earlier for Android does not verify the origin of SMS commands, which allows remote attackers to execute a 1 LOCATE, 2 TRACK, 3 UPDATECFG, 4 UPDATEACCT, 5 STAT, 6 TERM, or 7 WIPE command via an SMS message...

7.1AI score0.022EPSS
Exploits0References5
Cvelist
Cvelist
added 2012/05/22 3:0 p.m.25 views

CVE-2012-2567

The Xelex MobileTrack application 2.3.7 and earlier for Android uses hardcoded credentials, which allows remote attackers to obtain sensitive information via an unencrypted 1 FTP or 2 HTTP session...

6.3AI score0.01412EPSS
Exploits0References5
Rows per page
Query Builder