Security Advisory

CVE-2020-37086

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-03 22:01:48

Last updated 2026-02-04 21:06:10

Assigner VulnCheck

State PUBLISHED

Description

Easy Transfer 1.7 iOS mobile application contains a directory traversal vulnerability that allows remote attackers to access unauthorized file system paths without authentication. Attackers can exploit the vulnerability by manipulating path parameters in GET and POST requests to list or download sensitive system files and inject malicious scripts into application parameters.

← Browse all CVEs View on cve.org ↗