VYPR
High severity7.1NVD Advisory· Published Apr 30, 2026· Updated May 5, 2026

CVE-2026-22070

CVE-2026-22070

Description

ColorOS Assistant has an unauthenticated start-download channel, leading to file path traversal.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.