Lucene search

[email protected]NVD:CVE-2014-0805

HistoryJan 12, 2014 - 6:34 p.m.

CVE-2014-0805

2014-01-1218:34:56

CWE-22

[email protected]

web.nvd.nist.gov

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

71.3%

JSON

Directory traversal vulnerability in the NeoFiler application 5.4.3 and earlier, NeoFiler Free application 5.4.3 and earlier, and NeoFiler Lite application 2.4.2 and earlier for Android allows attackers to overwrite or create arbitrary files via unspecified vectors.

Affected configurations

Nvd

Node

skyartsneofilerRange≤2.4.2--liteandroid

skyartsneofilerRange≤5.4.3---android

skyartsneofilerRange≤5.4.3--freeandroid

VendorProductVersionCPE
skyartsneofiler*cpe:2.3:a:skyarts:neofiler:*:-:-:*:lite:android:*:*
skyartsneofiler*cpe:2.3:a:skyarts:neofiler:*:-:-:*:-:android:*:*
skyartsneofiler*cpe:2.3:a:skyarts:neofiler:*:-:-:*:free:android:*:*

Vendor	Product	Version	CPE
skyarts	neofiler	*	cpe:2.3:a:skyarts:neofiler::-:-::lite:android::
skyarts	neofiler	*	cpe:2.3:a:skyarts:neofiler::-:-::-:android::
skyarts	neofiler	*	cpe:2.3:a:skyarts:neofiler::-:-::free:android::

References

jvn.jp/en/jp/JVN85716574/index.html

jvndb.jvn.jp/jvndb/JVNDB-2014-000004

www.skyarts.com/products/android/neofiler/index.html

play.google.com/store/apps/details?id=com.skyarts.android.neofiler

play.google.com/store/apps/details?id=com.skyarts.android.neofilerfree

play.google.com/store/apps/details?id=com.skyarts.android.neofilerlite

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

71.3%

JSON

Related for NVD:CVE-2014-0805

jvn1 cvelist1 prion1 cve1