CVE-2014-7252

Published Dec 5, 2014

Last updated 3 months ago

CVSS info 4.6

Overview

Description: Multiple unspecified vulnerabilities in the Syslink driver for Texas Instruments OMAP mobile processor, as used on NTT DOCOMO ARROWS Tab LTE F-01D, ARROWS X LTE F-05D, Disney Mobile on docomo F-08D, REGZA Phone T-01D, and PRADA phone by LG L-02D; and SoftBank SHARP handsets 102SH allow local users to execute arbitrary code or read kernel memory via unknown vectors related to userland data and "improper data validation."
Source: vultures@jpcert.or.jp
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.6
Impact score: 6.4
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:disney_interactive:disney_mobile:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A1F11E96-DE4B-43BD-9353-5CC58CFBF908"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:fujitsu:f-08d:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4E0F58C3-BE28-44BB-9444-21FED4290BCE"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:fujitsu:arrows_tab_lte_f-01d:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "245D71AD-5D0D-43D7-9CD2-B7BE7ACADDF9"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:sharp:softbank_102sh:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D0CA34F5-20E7-4663-9A19-D67555E50386"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:fujitsu:regza_phone_t-01d:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC3CE189-7E5D-49B0-834D-610909C00FAE"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:fujitsu:arrows_x_lte_f-05d:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E423E510-BFE4-4BE2-A04F-2E22AFA93728"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:lg:prada_phone_l-02d:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9D935E00-B10E-4F08-B4A7-5B7462621299"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References