CVE-2022-50950

Vulnerability

Overview

Webile 1.0.1, a local area network file management tool that runs a web server on a mobile device, is vulnerable to a directory traversal attack. The application fails to properly validate user-supplied paths in HTTP requests, enabling an attacker to escape the intended document root and access arbitrary directories and files on the device's filesystem. [1][3]

Exploitation

The vulnerability can be exploited remotely without any authentication, as the web interface is directly exposed to the local network. An attacker sends specially crafted requests containing path traversal sequences (e.g., ../) to manipulate file system paths and navigate outside the application's designated directory. The attack requires network access to the Webile service. [1]

Impact

Successful exploitation allows an attacker to read sensitive system files, configuration data, or any user-accessible content stored on the mobile device. This could include private documents, media files, or system credentials, leading to further compromise of the device or user privacy. The CVSS v3 base score is 6.5 (Medium), with the attack vector being network-based and requiring no privileges. [3]

Mitigation

At the time of disclosure, a vendor patch was reportedly developed. Users are advised to update Webile to the latest version available from the Google Play Store. As a workaround, restricting network access to the Webile service via firewall rules can reduce exposure. [1]