Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2010-11-15	CVE-2010-0113	Credentials Management vulnerability in Symantec Mobile Security 1.0 The Symantec Norton Mobile Security application 1.0 Beta for Android records setup details, possibly including wipe/lock credentials, in the device logs, which allows user-assisted remote attackers to obtain potentially sensitive information by leveraging the ability of a separate crafted application to read these logs. network symantec google CWE-255	4.3
2010-11-09	CVE-2010-4214	Cryptographic Issues vulnerability in Wellsfargo Wells Fargo Mobile 1.1 The Wells Fargo Mobile application 1.1 for Android stores a username and password, along with account balances, in cleartext, which might allow physically proximate attackers to obtain sensitive information by reading application data. network wellsfargo google CWE-310	4.3
2010-11-09	CVE-2010-4213	Cryptographic Issues vulnerability in Bankofamerica Bank of America 2.12 The Bank of America application 2.12 for Android stores a security question's answer in cleartext, which might allow physically proximate attackers to obtain sensitive information by reading application data. network bankofamerica google CWE-310	4.3
2009-08-03	CVE-2009-2656	Remote Denial Of Service vulnerability in Google Android 1.0/1.1/1.5 Unspecified vulnerability in the com.android.phone process in Android 1.0, 1.1, and 1.5 allows remote attackers to cause a denial of service (network disconnection) via a crafted SMS message, as demonstrated by Collin Mulliner and Charlie Miller at Black Hat USA 2009. network low complexity google	5.0