目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

CVE-2026-57848— Stoat for Android 内部文件泄露漏洞

CVSS 5.5 · Medium

影响版本矩阵 1

厂商产品版本范围状态
stoatchatStoat for Android< 1.6.0affected
获取后续新漏洞提醒登录后订阅

一、 漏洞 CVE-2026-57848 基础信息

漏洞信息

对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
Stoat for Android Internal File Disclosure via Exported ShareTargetActivity URI Validation
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
Stoat for Android exports the chat.stoat.activities.ShareTargetActivity component (reachable to any process on the device via the android.intent.action.SEND intent) and accepts the file to share as a URI supplied through the android.intent.extra.STREAM extra. The activity does not validate or filter the incoming URI before using it as the outgoing attachment, so a caller can pass a file:// URI pointing at the application's own internal storage (for example /data/data/chat.revolt/databases/revolt.db, cached authentication token files, or preferences) and have the app treat that internal file as a user-selected attachment. An attacker who can invoke intents on the victim's device (via ADB access, a co-installed malicious application, or any other route that reaches Android's intent dispatch) can launch ShareTargetActivity with such a URI and cause the victim, on a single channel-selection interaction, to send the internal file to any Stoat channel or user of the attacker's choosing. The composer displays the attachment as \"attachment\" with no filename indication, so the victim has no visible signal that the file being sent is their own internal application data. Consequences include disclosure of the local Stoat database (message history, contact list, cached content), disclosure of authentication tokens permitting full account takeover, and disclosure of any other file readable by the app process.
来源: 美国国家漏洞数据库 NVD
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
CWE-926
来源: 美国国家漏洞数据库 NVD

受影响产品

厂商产品影响版本CPE订阅
stoatchatStoat for Android 0 ~ 1.6.0 -

二、漏洞 CVE-2026-57848 的公开POC

#POC 描述源链接神龙链接
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2026-57848 的情报信息

登录查看更多情报信息。

CVE-2026-57848 补丁与修复 (1)

CVE-2026-57848 厂商安全公告 (1)

CVE-2026-57848 其他参考 (1)

IV. Related Vulnerabilities

V. Comments for CVE-2026-57848

暂无评论


发表评论