CVE-2014-7252

{"id": "CVE-2014-7252", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-12-05T17:59:01.087", "references": [{"url": "http://jvn.jp/en/jp/JVN67792023/397327/index.html", "source": "vultures@jpcert.or.jp"}, {"url": "http://jvn.jp/en/jp/JVN67792023/995312/index.html", "source": "vultures@jpcert.or.jp"}, {"url": "http://jvn.jp/en/jp/JVN67792023/index.html", "source": "vultures@jpcert.or.jp"}, {"url": "http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-000137.html", "source": "vultures@jpcert.or.jp"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in the Syslink driver for Texas Instruments OMAP mobile processor, as used on NTT DOCOMO ARROWS Tab LTE F-01D, ARROWS X LTE F-05D, Disney Mobile on docomo F-08D, REGZA Phone T-01D, and PRADA phone by LG L-02D; and SoftBank SHARP handsets 102SH allow local users to execute arbitrary code or read kernel memory via unknown vectors related to userland data and \"improper data validation.\""}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades no especificadas en el controlador Syslink para el procesador m\u00f3vil de Texas Instruments OMAP, utilizado en NTT DOCOMO ARROWS Tab LTE F-01D, ARROWS X LTE F-05D, Disney Mobile on docomo F-08D, REGZA Phone T-01D, y PRADA phone por LG L-02D; y los tel\u00e9fonos SoftBank SHARP 102SH permiten a usuarios locales ejecutar c\u00f3digo arbitrario o leer la memoria del kernel a trav\u00e9s de vectores desconocidos relacionados con los datos userland y 'la validaci\u00f3n de datos incorrecta.'"}], "lastModified": "2014-12-08T13:55:38.113", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:disney_interactive:disney_mobile:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A1F11E96-DE4B-43BD-9353-5CC58CFBF908"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:fujitsu:f-08d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4E0F58C3-BE28-44BB-9444-21FED4290BCE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:fujitsu:arrows_tab_lte_f-01d:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "245D71AD-5D0D-43D7-9CD2-B7BE7ACADDF9"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sharp:softbank_102sh:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0CA34F5-20E7-4663-9A19-D67555E50386"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:fujitsu:regza_phone_t-01d:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CC3CE189-7E5D-49B0-834D-610909C00FAE"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:fujitsu:arrows_x_lte_f-05d:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E423E510-BFE4-4BE2-A04F-2E22AFA93728"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:lg:prada_phone_l-02d:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9D935E00-B10E-4F08-B4A7-5B7462621299"}], "operator": "OR"}]}], "sourceIdentifier": "vultures@jpcert.or.jp"}