Path Traversal Vulnerability Affects Local Files
CVE-2024-46939

Currently unrated

Key Information:

Vendor: Vivo
Status: Game Extension Engine
Vendor: CVE Published:; 28 November 2024

What is CVE-2024-46939?

The game extension engine of versions 1.2.7.0 and earlier exposes some components, and attackers can construct parameters to perform path traversal attacks, which can overwrite local specific files

Affected Version(s)

Game Extension Engine versions below 1.2.7.0

References

https://www.vivo.com/en/support/security-advisory-detail?...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 28, 2024
Vulnerability Reserved
Sep 15, 2024

Vivo

What is CVE-2024-46939?

Affected Version(s)

References

Timeline