CVE-2023-26321

Summary

A path traversal vulnerability exists in the Xiaomi File Manager application product(international version). The vulnerability is caused by unfiltered special characters and can be exploited by attackers to overwrite and execute code in the file.

Affected Software

VendorProductVersion RangeStatus
XiaomiXiaomi File Manager App International VersionXiaomi File Manager App International Version <= V1-210567affected

Weaknesses

  • A path traversal vulnerability exists

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References