Path traversal vulnerability in ZipCompressor of MyFiles prior to SMR Jan-2024 Release 1 in Android 11 and Android 12, and version 14.5.00.21 in Android 13 allows attackers to write arbitrary file. CVSS 3.1 Base Score 3.8 (Confidentiality impacts). Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Solaris accessible data. While the vulnerability is in Oracle Solaris, attacks may significantly impact additional products (scope change). Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. The supported version that is affected is 11. Vulnerability in the Oracle Solaris product of Oracle Systems (component: Filesystem). CVSS 3.1 Base Score 5.5 (Availability impacts). Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Solaris. Vulnerability in the Oracle Solaris product of Oracle Systems (component: Kernel).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |