CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:P/A:P
EPSS
Percentile
62.0%
tetra filer provided by Yuichiro Okuyama contains an issue in processing file names, which may result in a directory traversal (CWE-22) vulnerability.
A remote, unauthenticated attacker may create an arbitrary file or overwrite an existing file in a directory that the application has privileges to access.
Apply an update
Update to the latest version according to the information provided by the developer.
For Android OS version 4.0.3 and later:
tetra filer version 2.3.1 and earlier
tetra filer free version 2.3.1 and earlier
For Android OS version Prior to 4.0.3:
tetra filer version 1.5.1 and earlier
tetra filer free version 1.5.1 and earlier