CVE-2024-20804

CVSS 3.1 Score 4.0 of 10 (medium)

Details

Published Jan 4, 2024
Updated: Apr 2, 2024
CWE ID 22

Summary

CVE-2024-20804 is a path traversal vulnerability found in FileUriConverter of MyFiles before SMR Jan-2024 Release 1 in Android 11, Android 12, and version 14.5.00.21 in Android 13. This vulnerability allows local attackers to write arbitrary files. The affected products include various versions of Android. To remediate this vulnerability, users should update their Android devices to the latest software version that includes the necessary security patches. The potential danger posed to an organization is that an attacker could exploit this vulnerability to gain unauthorized access and write arbitrary files, potentially leading to data breaches or system compromise.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-20804 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options