4 matches found
CVE-2024-26132
Element Android is an Android Matrix Client. A third-party malicious application installed on the same phone can force Element Android, version 0.91.0 through 1.6.12, to share files stored under the files directory in the application's private data directory to an arbitrary room. The impact of th...
CVE-2024-26132
creationtimestamp| type| source ---|---|--- 2024-03-08 23:56:19+00:00| seen| https://t.me/ctinow/203662 2024-05-02 14:59:01+00:00| seen| https://t.me/CNArsenal/2414 2024-05-02 16:09:53+00:00| published-proof-of-concept| https://t.me/darkcommunityofficial/596 2024-05-02 20:34:02+00:00|...
CVE-2024-26132 Element Android can be asked to share internal files.
Element Android is an Android Matrix Client. A third-party malicious application installed on the same phone can force Element Android, version 0.91.0 through 1.6.12, to share files stored under the files directory in the application's private data directory to an arbitrary room. The impact of th...
CVE-2024-26132
CVE-2024-26132 (Element Android) affects Element Android versions 0.91.0–1.6.12. A malicious app on the same device can force Element Android to share files from the app’s private data directory to an arbitrary Matrix room. Databases in that directory are encrypted, reducing impact, but the data ...