CVE-2012-2635
Published Jun 15, 2012
Last updated 12 years ago
Overview
- Description
- The Dolphin Browser HD application before 7.6 and Dolphin for Pad application before 1.0.1 for Android do not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.
- Source
- vultures@jpcert.or.jp
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-200
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:dolphin-browser:dolphin_browser_hd:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B1E66091-2474-4DC7-8C1F-54C3F145AC57",
"versionEndIncluding": "7.4.0"
},
{
"criteria": "cpe:2.3:a:dolphin-browser:dolphin_browser_hd:6.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E4C08F71-AB4A-4570-B5BA-EBD2CC4BCAB4"
},
{
"criteria": "cpe:2.3:a:dolphin-browser:dolphin_browser_hd:7.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5D9BB68F-7524-4473-8BFF-695C7A82150F"
},
{
"criteria": "cpe:2.3:a:dolphin-browser:dolphin_browser_hd:7.3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "88E37571-026F-4881-9EB1-704745D3FCF3"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:google:android:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "8255F035-04C8-4158-B301-82101711939C"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:dolphin-browser:dolphin_for_pad:*:beta:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AB06260B-A5A4-4DBC-BF10-01A95D41C554",
"versionEndIncluding": "1.0"
}
],
"operator": "OR"
}
]
}
]