CVE-2022-47757

Published: May 4, 2023

Modified: Feb 3, 2025

PUBLISHED

Description

In imo.im 2022.11.1051, a path traversal vulnerability delivered via an unsanitized deeplink can force the application to write a file into the application's data directory. This may allow an attacker to save a shared library under a special directory which the app uses to dynamically load modules. Loading the library can lead to arbitrary code execution.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/Ch0pin/security-advisories/security/advisories/GHSA-ghf9-x3c5-3mwj

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-47757

Description

Affected Products

References