Path Traversal in Tcl Camera
CVE-2024-11136
The default TCL Camera application exposes a provider vulnerable to path traversal vulnerability. Malicious application can supply malicious URI path and delete arbitrary files from user’s external storage.
EPSS: 0.002 (15.9th percentile) — read the EPSS interpretation.
Affected products
- Tcl Camera — versions v6.00.04.0067.3.0
Weakness classification (CWE)
References
- cvd@cert.pl (third-party-advisory)
- cvd@cert.pl (third-party-advisory)
- cvd@cert.pl (related)