Lucene search

K
cvelistMitreCVELIST:CVE-2014-7954
HistoryJul 07, 2017 - 5:00 p.m.

CVE-2014-7954

2017-07-0717:00:00
mitre
www.cve.org

4.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.3%

Directory traversal vulnerability in the doSendObjectInfo method in frameworks/av/media/mtp/MtpServer.cpp in Android 4.4.4 allows physically proximate attackers with a direct connection to the target Android device to upload files outside of the sdcard via a … (dot dot) in a name parameter of an MTP request.

4.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.3%

Related for CVELIST:CVE-2014-7954