CVE-2022-47757

CVSS V2 None CVSS V3 None
Description
In imo.im 2022.11.1051, a path traversal vulnerability delivered via an unsanitized deeplink can force the application to write a file into the application's data directory. This may allow an attacker to save a shared library under a special directory which the app uses to dynamically load modules. Loading the library can lead to arbitrary code execution.
Overview
  • CVE ID
  • CVE-2022-47757
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Received
  • Published Version
  • 2023-05-04T02:15:09
  • Last Modified Date
  • 2023-05-04T02:15:09
History
Created Old Value New Value Data Type Notes
2023-05-04 03:00:35 Added to TrackCVE