CVE-2024-38272
CVSS V2 None
CVSS V3 None
Description
There exists a vulnerability in Quickshare/Nearby where an attacker can bypass the accept file dialog on QuickShare Windows. Normally in QuickShare Windows app we can't send a file without the user accept from the receiving device if the visibility is set to everyone mode or contacts mode. We recommend upgrading to version 1.0.1724.0 of Quickshare or above
Overview
- CVE ID
- CVE-2024-38272
- Assigner
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-06-26T15:19:31.362Z
- Last Modified Date
- 2024-06-26T17:11:46.228Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://github.com/google/nearby/pull/2589 | |
| https://github.com/google/nearby/pull/2402 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-38272 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-38272 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-27 13:11:36 | Added to TrackCVE |