Vulnerabilities > Android > Medium

DATE CVE VULNERABILITY TITLE RISK
2012-01-25 CVE-2011-4867 Permissions, Privileges, and Access Controls vulnerability in Tencent Qqpphoto 0.97
The Tencent QQPhoto (com.tencent.qqphoto) application 0.97 for Android does not properly protect data, which allows remote attackers to read or modify contact information and a password hash via a crafted application.
5.8
2012-01-25 CVE-2011-4866 Information Exposure vulnerability in Kaixin001 1.3.1/1.3.3
The Kaixin001 (com.kaixin001.activity) application 1.3.1 and 1.3.3 for Android does not properly protect data, which allows remote attackers to read or modify contact information and a cleartext password via a crafted application.
network
low complexity
kaixin001 android CWE-200
6.4
2012-01-25 CVE-2011-4773 Permissions, Privileges, and Access Controls vulnerability in Anguanjia 2.10.343
The AnGuanJia (com.anguanjia.safe) application 2.10.343 for Android does not properly protect data, which allows remote attackers to read or modify SMS messages and a contact list via a crafted application.
5.8
2012-01-25 CVE-2011-4772 Permissions, Privileges, and Access Controls vulnerability in 360 Kouxin 1.5.3
The 360 KouXin (com.qihoo360.kouxin) application 1.5.3 for Android does not properly protect data, which allows remote attackers to read or modify SMS messages and a contact list via a crafted application.
network
360 android CWE-264
5.8
2012-01-25 CVE-2011-4771 Permissions, Privileges, and Access Controls vulnerability in Lucion Scan TO PDF Free 2.0.4
The Scan to PDF Free (com.scan.to.pdf.trial) application 2.0.4 for Android does not properly protect data, which allows remote attackers to read or modify scanned files and a Google account via a crafted application.
5.8
2012-01-25 CVE-2011-4770 Permissions, Privileges, and Access Controls vulnerability in Qiwi Wallet 1.13
The QIWI Wallet (ru.mw) application before 1.14.2 for Android does not properly protect data, which allows remote attackers to read or modify financial information via a crafted application.
network
qiwi android CWE-264
5.8
2012-01-25 CVE-2011-4769 Permissions, Privileges, and Access Controls vulnerability in 360 Mobilesafe 2.1.0/2.2.0
The 360 MobileSafe (com.qihoo360.mobilesafe) application 2.x before 2.3.0 for Android does not properly protect data, which allows remote attackers to read or modify SMS messages and a contact list via a crafted application.
network
360 android CWE-264
5.8
2012-01-25 CVE-2011-4705 Permissions, Privileges, and Access Controls vulnerability in Ming Blacklist Free 1.8.1/1.9.2.1
The Ming Blacklist Free (vc.software.blacklist) application 1.8.1 and 1.9.2.1 for Android does not properly protect data, which allows remote attackers to read or modify blacklists and a contact list via a crafted application that launches a "data-flow attack."
network
ming android CWE-264
5.8
2012-01-25 CVE-2011-4704 Permissions, Privileges, and Access Controls vulnerability in Voxofon
The Voxofon (com.voxofon) application before 2.5.2 for Android does not properly protect data, which allows remote attackers to read or modify SMS information via a crafted application.
5.8
2012-01-25 CVE-2011-4703 Permissions, Privileges, and Access Controls vulnerability in Nathanielkh Limit MY Call 2.11
The Limit My Call (com.limited.call.view) application 2.11 for Android does not properly protect data, which allows remote attackers to read or modify call logs and a contact list via a crafted application.
5.8