CVE-2014-0809

Gapless Player SimZip < 1.2.1 - Path Traversal and Arbitrary File Write via Crafted Filename

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in the Gapless Player SimZip (aka Simple Zip Viewer) application before 1.2.1 for Android allows remote attackers to overwrite or create arbitrary files via a crafted filename.

References (4)

Core 4
Core References
Third Party Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN49384502/index.html
Third Party Advisory third-party-advisory x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2014-000008
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/90980

Scores

EPSS 0.0150
EPSS Percentile 71.2%

Details

CWE
CWE-22
Status published
Products (2)
gapless_player/simzip 1.1
gapless_player/simzip < 1.2
Published Jan 24, 2014
Tracked Since Feb 18, 2026