What is CVE-2012-6422?

CVE-2012-6422 is a vulnerability in Meizu Mx, classified under CWE-264. Published 2012-12-18.

Is CVE-2012-6422 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Meizu Mx

CVE-2012-6422

The kernel in Samsung Galaxy S2, Galaxy Note 2, MEIZU MX, and possibly other Android devices, when running an Exynos 4210 or 4412 processor, uses weak permissions (0666) for /dev/exynos-mem, which allows attackers to read or write arbitrar…

EPSS: 0.152 (96.3th percentile) — read the EPSS interpretation.

Affected products

Meizu Mx
Samsung Galaxy_note_2
Samsung Galaxy_s2
N/a — versions n/a

Weakness classification (CWE)

CWE-264

Public proof-of-concept exploits

wired0ut/CVE-2012-6422
ARPSyndicate/cve-scores
tangsilian/android-vuln

References

cve@mitre.org (x_refsource_MISC)
cve@mitre.org (x_refsource_MISC)
cve@mitre.org (Exploit, x_refsource_MISC)
cve@mitre.org (x_refsource_MISC)
cve@mitre.org (x_refsource_MISC)
cve@mitre.org (x_refsource_MISC)
cve@mitre.org (x_refsource_OSVDB, vdb-entry)

Frequently asked questions

What is CVE-2012-6422?: CVE-2012-6422 is a vulnerability in Meizu Mx, classified under CWE-264. Published 2012-12-18.
Is CVE-2012-6422 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.