CVE-2010-4213

The Bank of America application 2.12 for Android stores a security question's answer in cleartext, which might allow physically proximate attackers to obtain sensitive information by reading application data.

Published: Nov 9, 2010
Updated: Apr 13, 2023
CVE: CVE-2010-4213
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-310

Affected Software
References

Software	From	Fixed in
bankofamerica / bank_of_america	2.12	2.12.x

http://news.cnet.com/8301-27080_3-20021874-245.html
http://online.wsj.com/article/SB10001424052748703805704575594581203248658.html
http://viaforensics.com/appwatchdog/bank-of-america-android.html

Vulnerability Database

291,048

CVE-2010-4213