cve/CVE-2024-43093.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-30 18:56:19 +00:00

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

1.3 KiB

Raw Permalink Blame History

CVE-2024-43093

Description

In shouldHideDocument of ExternalStorageProvider.java, there is a possible bypass of a file path filter designed to prevent access to sensitive directories due to incorrect unicode normalization. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

POC

Reference

No PoCs from references.

Github

https://github.com/0xAtef/0xAtef
https://github.com/exploitsecure/CVE-2024-43093
https://github.com/hatvix1/CVE-2024-43093
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/packetinside/CISA_BOT
https://github.com/ums91/CISA_BOT

1.3 KiB Raw Permalink Blame History

CVE-2024-43093

Description

POC

Reference

Github

1.3 KiB

Raw Permalink Blame History