Lucene search
K

221 matches found

NVD
NVD
added 2026/07/02 9:16 p.m.5 views

CVE-2026-58460

react-native-receive-sharing-intent contains a path traversal vulnerability that allows a co-resident malicious application to write files outside the intended cache directory by supplying a crafted displayname value containing dot-dot path components through a malicious ContentProvider. Attacker...

7.7CVSS0.00138EPSS
Exploits0References2
CVE
CVE
added 2026/07/02 8:10 p.m.13 views

CVE-2026-58460

CVE-2026-58460 affects the React Native package react-native-receive-sharing-intent. A path traversal vulnerability allows a co-resident malicious app to write files outside the intended cache directory by supplying a crafted _display_name with dot-dot path components via a malicious ContentProvi...

7.7CVSS5.9AI score0.00138EPSS
Exploits0References2
EUVD
EUVD
added 2026/07/02 8:10 p.m.7 views

EUVD-2026-41437

react-native-receive-sharing-intent contains a path traversal vulnerability that allows a co-resident malicious application to write files outside the intended cache directory by supplying a crafted displayname value containing dot-dot path components through a malicious ContentProvider. Attacker...

7.7CVSS5.9AI score0.00138EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/02 8:10 p.m.35 views

CVE-2026-58460 react-native-receive-sharing-intent Path Traversal via _display_name

react-native-receive-sharing-intent contains a path traversal vulnerability that allows a co-resident malicious application to write files outside the intended cache directory by supplying a crafted displayname value containing dot-dot path components through a malicious ContentProvider. Attacker...

7.7CVSS0.00138EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/07/02 8:10 p.m.7 views

CVE-2026-58460

react-native-receive-sharing-intent contains a path traversal vulnerability that allows a co-resident malicious application to write files outside the intended cache directory by supplying a crafted displayname value containing dot-dot path components through a malicious ContentProvider. Attacker...

7.7CVSS5.9AI score0.00138EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/07/02 12:0 a.m.13 views

PT-2026-55309

Name of the Vulnerable Software and Affected Versions react-native-receive-sharing-intent affected versions not specified Description A path traversal issue exists where a co-resident malicious application can write files outside the intended cache directory. This occurs when a crafted display na...

7.7CVSS6.1AI score0.00138EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2026/04/27 12:11 p.m.45 views

chatpdf.pro

Dirty Stream Vulnerability in chatpdf.pro App Name: PDF...

5.6AI score
Exploits0
NVD
NVD
added 2026/04/06 9:16 p.m.6 views

CVE-2026-35394

Mobile Next is an MCP server for mobile development and automation. Prior to 0.0.50, the mobileopenurl tool in mobile-mcp passes user-supplied URLs directly to Android's intent system without any scheme validation, allowing execution of arbitrary Android intents, including USSD codes, phone calls...

8.8CVSS0.00387EPSS
Exploits1References1
OSV
OSV
added 2026/04/04 5:37 a.m.4 views

GHSA-5QHV-X9J4-C3VM @mobilenext/mobile-mcp: Arbitrary Android Intent Execution via mobile_open_url

Summary The mobileopenurl tool in mobile-mcp passes user-supplied URLs directly to Android's intent system without any scheme validation, allowing execution of arbitrary Android intents, including USSD codes, phone calls, SMS messages, and content provider access. Details The vulnerable code pass...

8.3CVSS6.3AI score0.00387EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/03/09 8:2 a.m.6 views

CVE-2026-3671

A flaw has been found in Freedom Factory dGEN1 up to 20260221. Affected by this vulnerability is the function TokenBalanceContentProvider of the component org.ethereumphone.walletmanager.testing123. Executing a manipulation can lead to improper authorization. The attack requires local access. The...

4.8CVSS5.4AI score0.00103EPSS
Exploits0References1
CVE
CVE
added 2026/03/07 9:32 p.m.16 views

CVE-2026-3671

The CVE-2026-3671 entry concerns Freedom Factory dGEN1 (up to 20260221) with a flaw in the TokenBalanceContentProvider function of org.ethereumphone.walletmanager.testing123. The underlying issue permits local manipulation that leads to improper authorization, affecting confidentiality (PARTIAL) ...

4.8CVSS5.4AI score0.00103EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/04 1:57 a.m.4 views

CVE-2025-48636

In openFile of BugreportContentProvider.java, there is a possible way to read and write unauthorized files due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS6.1AI score0.00086EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/04 1:57 a.m.3 views

CVE-2025-48619

In multiple functions of ContentProvider.java, there is a possible way for an app with read-only access to truncate files due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

8.4CVSS6.1AI score0.001EPSS
Exploits0References1
OSV
OSV
added 2026/03/02 7:16 p.m.5 views

CVE-2025-48636

In openFile of BugreportContentProvider.java, there is a possible way to read and write unauthorized files due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS5.9AI score0.00086EPSS
Exploits0References1
OSV
OSV
added 2026/03/02 7:16 p.m.5 views

CVE-2025-48619

In multiple functions of ContentProvider.java, there is a possible way for an app with read-only access to truncate files due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

8.4CVSS5.9AI score0.001EPSS
Exploits0References1
NVD
NVD
added 2026/03/02 7:16 p.m.9 views

CVE-2025-48619

In multiple functions of ContentProvider.java, there is a possible way for an app with read-only access to truncate files due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

8.4CVSS0.001EPSS
Exploits0References1
NVD
NVD
added 2026/03/02 7:16 p.m.6 views

CVE-2025-48636

In openFile of BugreportContentProvider.java, there is a possible way to read and write unauthorized files due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS0.00086EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/02 7:2 p.m.4 views

CVE-2025-48636

In openFile of BugreportContentProvider.java, there is a possible way to read and write unauthorized files due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.1AI score0.00086EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/02 7:2 p.m.3 views

EUVD-2025-208215

In openFile of BugreportContentProvider.java, there is a possible way to read and write unauthorized files due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS6.1AI score0.00086EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/02 6:42 p.m.5 views

CVE-2025-48619

In multiple functions of ContentProvider.java, there is a possible way for an app with read-only access to truncate files due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

8.4CVSS6.1AI score0.001EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder