Lucene search
K

7 matches found

NVD
NVD
added 5 days ago5 views

CVE-2026-58460

react-native-receive-sharing-intent contains a path traversal vulnerability that allows a co-resident malicious application to write files outside the intended cache directory by supplying a crafted displayname value containing dot-dot path components through a malicious ContentProvider. Attacker...

7.7CVSS0.00138EPSS
Exploits0References2
EUVD
EUVD
added 5 days ago7 views

EUVD-2026-41437

react-native-receive-sharing-intent contains a path traversal vulnerability that allows a co-resident malicious application to write files outside the intended cache directory by supplying a crafted displayname value containing dot-dot path components through a malicious ContentProvider. Attacker...

7.7CVSS5.9AI score0.00138EPSS
Exploits0References2
CVE
CVE
added 5 days ago12 views

CVE-2026-58460

CVE-2026-58460 affects the React Native package react-native-receive-sharing-intent. A path traversal vulnerability allows a co-resident malicious app to write files outside the intended cache directory by supplying a crafted _display_name with dot-dot path components via a malicious ContentProvi...

7.7CVSS5.9AI score0.00138EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/02/29 12:0 a.m.4 views

Element Android Security Vulnerability

Element Android is the Android Matrix client provided by Element. A security vulnerability exists in Element Android versions 0.91.0 through 1.6.12, which originates from a vulnerability that allows an attacker to share files stored in the application's private data directory to an arbitrary Matr...

4CVSS6.7AI score0.00387EPSS
Exploits0References4
OSV
OSV
added 2024/02/20 6:30 p.m.36 views

CVE-2024-26132 Element Android can be asked to share internal files.

Element Android is an Android Matrix Client. A third-party malicious application installed on the same phone can force Element Android, version 0.91.0 through 1.6.12, to share files stored under the files directory in the application's private data directory to an arbitrary room. The impact of th...

4CVSS4.9AI score0.00387EPSS
Exploits0References5
OSV
OSV
added 2022/08/23 4:15 p.m.4 views

PYSEC-2022-43068

A race condition flaw was found in ansible-runner, where an attacker could watch for rapid creation and deletion of a temporary directory, substitute their directory at that name, and then have access to ansible-runner's privatedatadir the next time ansible-runner made use of the privatedatadir...

6.3CVSS6.1AI score0.00188EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/08/23 12:0 a.m.5 views

Ansible Runner 竞争条件问题漏洞

Ansible Runner is an open source tool and python library for Ansible. It can help when interacting with Ansible directly or as part of another system. A security vulnerability exists in Ansible Runner version 2.0.0, which stems from the presence of a race condition vulnerability that can be...

6.3CVSS5.6AI score0.00188EPSS
Exploits0References4
Rows per page
Query Builder