Security Advisory

CVE-2024-37403

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-08-07 03:54:46

Last updated 2025-03-25 16:55:12

Assigner hackerone

State PUBLISHED

Description

Ivanti Docs@Work for Android, before 2.26.0 is affected by the Dirty Stream vulnerability. The application fails to properly sanitize file names, resulting in a path traversal-affiliated vulnerability. This potentially enables other malicious apps on the device to read sensitive information stored in the app root.

← Browse all CVEs View on cve.org ↗