First published: Wed Aug 28 2024(Updated: )
A path traversal vulnerability exists in the Xiaomi File Manager application product(international version). The vulnerability is caused by unfiltered special characters and can be exploited by attackers to overwrite and execute code in the file.
Credit: security@xiaomi.com
Affected Software | Affected Version | How to fix |
---|---|---|
mi File Manager | =1-210567 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-26321 is rated as a high-severity vulnerability due to its potential to allow attackers to overwrite and execute code.
To fix CVE-2023-26321, update the Xiaomi File Manager application to the latest version that addresses the path traversal vulnerability.
CVE-2023-26321 affects devices running the Xiaomi File Manager application in its international version compatible with version 1-210567.
In the context of CVE-2023-26321, a path traversal vulnerability allows an attacker to manipulate file paths to access unauthorized files and execute malicious code.
Yes, CVE-2023-26321 can potentially be exploited remotely by an attacker to gain unauthorized access and execute code on the affected device.