A vulnerability was found in HTC One/Sense 4.x. It has been rated as problematic. Affected by this issue is the certification validation of the mail client. An exploit has been disclosed to the public and may be used.
References
Link | Resource |
---|---|
http://www.modzero.ch/modlog/archives/2013/05/28/htcs_e-mail_client_fails_to_verify_server_certificates/ | Third Party Advisory |
https://vuldb.com/?id.8900 | Permissions Required Third Party Advisory |
http://www.modzero.ch/modlog/archives/2013/05/28/htcs_e-mail_client_fails_to_verify_server_certificates/ | Third Party Advisory |
https://vuldb.com/?id.8900 | Permissions Required Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
History
21 Nov 2024, 01:48
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.modzero.ch/modlog/archives/2013/05/28/htcs_e-mail_client_fails_to_verify_server_certificates/ - Third Party Advisory | |
References | () https://vuldb.com/?id.8900 - Permissions Required, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : 4.3
v3 : 4.8 |
Information
Published : 2022-05-17 08:15
Updated : 2024-11-21 01:48
NVD link : CVE-2013-10001
Mitre link : CVE-2013-10001
CVE.ORG link : CVE-2013-10001
JSON object : View
Products Affected
htc
- one_sv
- one_x
- sdk_api
- sense
CWE
CWE-295
Improper Certificate Validation