Vulnerability Description
The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices shows the activation of remote tracking, which might allow physically proximate attackers to defeat a product-recovery effort by tampering with this feature or its location data.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Samsung | Samsungdive | - |
| Samsung | Galaxy Note 2 | - |
| Samsung | Galaxy S | - |
| Samsung | Galaxy S2 | - |
Related Weaknesses (CWE)
References
- http://thehackernews.com/2012/12/manufacture-based-gps-tracking-services.html
- http://thehackernews.com/2012/12/manufacture-based-gps-tracking-services.html
FAQ
What is CVE-2012-6337?
CVE-2012-6337 is a vulnerability with a CVSS score of 3.3 (LOW). The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices shows the activation of remote tracking, which might allow physically proximate attackers to defeat a pro...
How severe is CVE-2012-6337?
CVE-2012-6337 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-6337?
Check the references section above for vendor advisories and patch information. Affected products include: Samsung Samsungdive, Samsung Galaxy Note 2, Samsung Galaxy S, Samsung Galaxy S2.