Vulnerabilities > CVE-2012-2630 - Credentials Management vulnerability in Bandainamcogames Madomagi-Ip Android 1.05

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
bandainamcogames
CWE-255
NVD
Published: 2012-06-04
Updated: 2012-06-06

Summary

The Puella Magi Madoka Magica iP application 1.05 and earlier for Android places cleartext Twitter credentials in a log file, which allows remote attackers to obtain sensitive information via a crafted application.

Vulnerable Configurations

Part Description Count
Application
Bandainamcogames
1

Common Weakness Enumeration (CWE)

References