GCVE - cpe:2.3:h:htc:evo_4g:gri40:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:h:htc:evo_4g:gri40:*:*:*:*:*:*:*

part: h version: gri40 update: *

Vendor	Htc (`43d3c235-e197-5253-b42b-aac9a3b92e18`)
Product	Evo 4G (`9b044948-179f-5a7c-a3bd-4cc2c62e60a1`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2012-2217`	vulnerable	2026-06-03 14:31:46.946601	Details available The HTC IQRD service for Android on the HTC EVO 4G before 4.67.651.3, EVO Design 4G before 2.12.651.5, Shift 4G before 2.77.651.3, EVO 3D before 2.17.651.5, EVO View 4G before 2.23.651.1, Vivid before 3.26.502.56, and Hero does not restrict localhost access to TCP port 2479, which allows remote attackers to (1) send SMS messages, (2) obtain the Network Access Identifier (NAI) and its password, or trigger (3) popup messages or (4) tones via a crafted application that leverages the android.permission.INTERNET permission. Published: 2012-05-01T14:00:00.000Z Updated: 2024-08-06T19:26:08.929Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/53187 https://exchange.xforce.ibmcloud.com/vulnerabilities/75080 http://archives.neohapsis.com/archives/bugtraq/2012-04/0176.html http://www.vsecurity.com/resources/advisory/20120420-1/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-4872`	vulnerable	2026-06-03 14:31:26.650841	Details available Multiple HTC Android devices including Desire HD FRG83D and GRI40, Glacier FRG83, Droid Incredible FRF91, Thunderbolt 4G FRG83D, Sensation Z710e GRI40, Sensation 4G GRI40, Desire S GRI40, EVO 3D GRI40, and EVO 4G GRI40 allow remote attackers to obtain 802.1X Wi-Fi credentials and SSID via a crafted application that uses the android.permission.ACCESS_WIFI_STATE permission to call the toString method on the WifiConfiguration class. Published: 2012-02-05T11:00:00.000Z Updated: 2024-09-17T02:37:18.428Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/763355 http://archives.neohapsis.com/archives/bugtraq/2012-02/0002.html http://secunia.com/advisories/47837 http://blog.mywarwithentropy.com/2012/02/8021x-password-exploit-on-many-htc.html http://www.securityfocus.com/bid/51790	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.