MidnightBSD

Advisories for htc

CVE-2011-3975 LOW

A certain HTC update for Android 2.3.4 build GRJ22, when the Sense interface is used on the HTC EVO 3D, EVO 4G, ThunderBolt, and unspecified other devices, provides the HtcLoggers.apk application, which allows user-assisted remote attackers to obtain a list of telephone numbers from a log, and other sensitive information, by leveraging the android.permission.INTERNET application permission and establishing TCP sessions to 127.0.0.1 on port 65511 and a second port.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
htc evo_4g *
google android 2.3.4
htc evo_3d *
htc thunderbolt *
CVE-2011-4872 LOW

Multiple HTC Android devices including Desire HD FRG83D and GRI40, Glacier FRG83, Droid Incredible FRF91, Thunderbolt 4G FRG83D, Sensation Z710e GRI40, Sensation 4G GRI40, Desire S GRI40, EVO 3D GRI40, and EVO 4G GRI40 allow remote attackers to obtain 802.1X Wi-Fi credentials and SSID via a crafted application that uses the android.permission.ACCESS_WIFI_STATE permission to call the toString method on the WifiConfiguration class.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
htc droid_incredible frf91
htc sensation_z710e gri40
htc thunderbolt_4g frg83d
htc evo_4g gri40
htc glacier frg83
htc desire_s gri40
htc desire_hd frg83d
htc desire_hd gri40
htc evo_3d gri40
htc sensation_4g gri40
CVE-2012-2217 MEDIUM

The HTC IQRD service for Android on the HTC EVO 4G before 4.67.651.3, EVO Design 4G before 2.12.651.5, Shift 4G before 2.77.651.3, EVO 3D before 2.17.651.5, EVO View 4G before 2.23.651.1, Vivid before 3.26.502.56, and Hero does not restrict localhost access to TCP port 2479, which allows remote attackers to (1) send SMS messages, (2) obtain the Network Access Identifier (NAI) and its password, or trigger (3) popup messages or (4) tones via a crafted application that leverages the android.permission.INTERNET permission.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
htc evo_design_4g_software 1.19.651.0
htc vivid -
htc evo_4g_software 3.29.651.5
htc evo_3d_software 1.13.651.7
htc evo_4g_software *
htc evo_4g_software 3.70.651.1
htc evo_view_4g_software 1.22.651.1
htc hero_software 2.31.651.7
htc hero_software 1.29.651.1
htc shift_4g_software *
htc evo_4g -
htc evo_4g_software 1.47.651.1
htc evo_3d gri40
htc shift_4g_software 2.75.651.4
htc evo_4g_software 4.53.651.1
htc hero_software 2.32.651.2
htc shift_4g_software 1.17.651.1
htc evo_3d_software 1.11.651.3
htc evo_design_4g_software *
htc evo_view_4g_software *
htc evo_3d_software 2.08.651.2
htc vivid_software *
htc evo_4g_software 1.32.651.1
htc hero -
htc evo_3d *
htc hero_software 1.56.651.2
htc shift_4g_software 2.75.651.5
htc shift_4g -
htc evo_4g_software 4.22.651.2
htc evo_design_4g -
htc evo_4g_software 4.24.651.1
htc evo_view_4g -
htc evo_4g gri40
htc evo_4g_software 3.30.651.2
htc evo_4g_software 3.30.651.3
htc hero_software 2.27.651.5
htc evo_4g_software 3.26.651.6
htc evo_3d_software *
htc hero_software 2.27.651.6
CVE-2013-10001 MEDIUM

A vulnerability was found in HTC One/Sense 4.x. It has been rated as problematic. Affected by this issue is the certification validation of the mail client. An exploit has been disclosed to the public and may be used.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.8 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N 2.2 2.5
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 2.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-295,CWE-295,

Products Affected

Vendor Product Version
htc mail 5.5.550363
htc mail 5.2.2222282614.528614.528614
CVE-2013-4622 HIGH

The 3G Mobile Hotspot feature on the HTC Droid Incredible has a default WPA2 PSK passphrase of 1234567890, which makes it easier for remote attackers to obtain access by leveraging a position within the WLAN coverage area.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-255,

Products Affected

Vendor Product Version
htc droid_incredible frf91
htc droid_incredible -
CVE-2018-1170 HIGH

This vulnerability allows adjacent attackers to inject arbitrary Controller Area Network messages on vulnerable installations of Volkswagen Customer-Link App 1.30 and HTC Customer-Link Bridge. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Customer-Link App and Customer-Link Bridge. The issue results from the lack of a proper protection mechanism against unauthorized firmware updates. An attacker can leverage this vulnerability to inject CAN messages. Was ZDI-CAN-5264.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-693,NVD-CWE-Other,

Products Affected

Vendor Product Version
htc customer-link_bridge -
volkswagen customer-link 1.30
CVE-2019-12176 HIGH

Privilege escalation in the "HTC Account Service" and "ViveportDesktopService" in HTC VIVEPORT before 1.0.0.36 allows local attackers to escalate privileges to SYSTEM via reconfiguration of either service.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-269,

Products Affected

Vendor Product Version
htc viveport *
CVE-2019-12177 HIGH

Privilege escalation due to insecure directory permissions affecting ViveportDesktopService in HTC VIVEPORT before 1.0.0.36 allows local attackers to escalate privileges via DLL hijacking.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-427,

Products Affected

Vendor Product Version
htc viveport *