CVE-2011-1472

Current Description

The Nokia E75 phone with firmware before 211.12.01 allows physically proximate attackers to bypass the Device Lock code by entering an unspecified button sequence at boot time.

Basic Data

PublishedMarch 29, 2011
Last ModifiedAugust 17, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-287
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS 2 - Access VectorLOCAL
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactCOMPLETE
CVSS 2 - Availability ImpactCOMPLETE
CVSS 2 - Base Score7.2
SeverityHIGH
Exploitability Score3.9
Impact Score10.0
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • AND
    • OR - Configuration 1
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3ApplicationNokiaE75 Firmware210.12.15*******
      2.3ApplicationNokiaE75 Firmware********211.12
    • OR Running on/with:
      Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
      2.3HardwareNokiaE75********

Vulnerable Software List

VendorProductVersions
Nokia E75 Firmware *, 210.12.15
Nokia E75 *

References

NameSourceURLTags
43827http://secunia.com/advisories/43827SECUNIAVendor Advisory
http://www.cert.fi/en/reports/2011/vulnerability410355.htmlhttp://www.cert.fi/en/reports/2011/vulnerability410355.htmlMISC
47022http://www.securityfocus.com/bid/47022BID
nokiae75-lockcode-sec-bypass(66322)https://exchange.xforce.ibmcloud.com/vulnerabilities/66322XF