VDB

GCVE-110-CERTCC-2012-464683

GCVE-110-CERTCC-2012-464683
Advisory PublishedCVSS 6.8/10
Vulnetix · Advisory published May 21, 2012
Xelex Technologies' MobileTrack application has been reported to not verify the source of administrative SMS commands. An unauthenticated remote attacker can send commands over SMS to MobileTrack. User data is also exposed on an insecure FTP server account.

Risk Scores

CVSS 2.0
6.8/10
Medium · AV:N/AC:M/Au:N/C:P/I:P/A:P
certcc-cam
certcc-cam
impact0population0exploitation0widely_known0score_current0ease_of_exploitation0
certcc-vrda
certcc-vrda
d1_impact3d1_population2d1_direct_report1
certcc-cvss-temporal-env
certcc-cvss-temporal-env
temporal_score5.5remediation_levelUreport_confidenceURenvironmental_score1.37725905834891target_distributionLenvironmental_vectorCDP:ND/TD:L/CR:ND/IR:ND/AR:ND

Browse GCVE Records

72,664 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›