CVE-2024-49421

{"id": "CVE-2024-49421", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "mobile.security@samsung.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.8}]}, "published": "2024-12-03T06:15:10.393", "references": [{"url": "https://security.samsungmobile.com/serviceWeb.smsb?year=2024&month=12", "tags": ["Vendor Advisory"], "source": "mobile.security@samsung.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "Path traversal in Quick Share Agent prior to version 3.5.14.47 in Android 12, 3.5.19.41 in Android 13, and 3.5.19.42 in Android 14 allows adjacent attackers to write file in arbitrary location."}, {"lang": "es", "value": " El path traversal en Quick Share Agent anterior a la versi\u00f3n 3.5.14.47 en Android 12, 3.5.19.41 en Android 13 y 3.5.19.42 en Android 14 permite a atacantes adyacentes escribir archivos en una ubicaci\u00f3n arbitraria."}], "lastModified": "2025-09-24T19:18:12.197", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:samsung:quick_share:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "396A884E-B3F2-4232-9C50-03C88438714F", "versionEndExcluding": "3.5.19.41"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "879FFD0C-9B38-4CAA-B057-1086D794D469"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:samsung:quick_share:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "85E65C4D-7AF4-4B6F-AA11-6816B693EB6A", "versionEndExcluding": "3.5.19.42"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:samsung:quick_share:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6893F505-697A-4FF3-8A9F-7E426065B505", "versionEndExcluding": "3.5.14.47"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:google:android:12.0:-:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "16820CAF-0A8A-45C8-B5A8-979EA0407389"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "mobile.security@samsung.com"}