CVE-2022-47027

Опубликовано: 14 апр. 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Timmystudios Fast Typing Keyboard v1.275.1.162 allows unauthorized apps to overwrite arbitrary files in its internal storage via a dictionary traversal vulnerability and achieve arbitrary code execution.

Ссылки

https://corporate.timmystudios.com/
Product
https://github.com/LianKee/SODA/blob/main/CVEs/CVE-2022-47027/CVE%20detail.md
Exploit
Third Party Advisory
https://play.google.com/store/apps/details?id=com.jb.gokeyboard.theme.timssfasttypingkeyboard
Broken Link
https://corporate.timmystudios.com/
Product
https://github.com/LianKee/SODA/blob/main/CVEs/CVE-2022-47027/CVE%20detail.md
Exploit
Third Party Advisory
https://play.google.com/store/apps/details?id=com.jb.gokeyboard.theme.timssfasttypingkeyboard
Broken Link

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:timmystudios:fast_typing_keyboard:1.275.1.162:*:*:*:*:android:*:*

EPSS

Процентиль: 68%

0.00557

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-22

Связанные уязвимости

GHSA-q75c-4hmc-829p