CVE-2024-46939

Vulnerability Description

The game extension engine of versions 1.2.7.0 and earlier exposes some components, and attackers can construct parameters to perform path traversal attacks, which can overwrite local specific files

Related Weaknesses (CWE)

CWE-22

References

https://www.vivo.com/en/support/security-advisory-detail?id=13

FAQ

What is CVE-2024-46939?

CVE-2024-46939 is a documented vulnerability. The game extension engine of versions 1.2.7.0 and earlier exposes some components, and attackers can construct parameters to perform path traversal attacks, which can overwrite local specific files

How severe is CVE-2024-46939?

CVSS scoring is not yet available for CVE-2024-46939. Check NVD for updates.

Is there a patch for CVE-2024-46939?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.