CVE-2023-26321

Published at:
2024-08-28T08:15:06.083
Source: [email protected]

Global infos:

A path traversal vulnerability exists in the Xiaomi File Manager application product(international version). The vulnerability is caused by unfiltered special characters and can be exploited by attackers to overwrite and execute code in the file.

CVE Status: Analyzed

References:

  • [email protected]
    •

    Metrics:

    AttributeValue
    Attack ComplexityHIGH
    Attack VectorPHYSICAL
    Availability ImpactHIGH
    Base Score6.3
    Base SeverityMEDIUM
    Confidentiality ImpactHIGH
    Integrity ImpactHIGH
    Privileges RequiredNONE
    ScopeUNCHANGED
    User InteractionREQUIRED
    Vector StringCVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
    Exploitability Score0.4
    Impact Score5.9
    Source[email protected]
    TypeSecondary

    Links:

    Exploit-db
    Github

    Most recherched CVEs
    Popular Keywords