HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2024-25466

CVSS 7.8v3.1pub. 2024-02-16upd. 2025-03-27

Directory Traversal vulnerability in React Native Document Picker before v.9.1.1 and fixed in v.9.1.1 allows a local attacker to execute arbitrary code via a crafted script to the Android library component.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • React Native Documents Document Picker

    APP
    React-Native-Documents
    < 9.1.1
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
RCEPath Traversal
CWE
References