Exploits / Vulnerability Discovered : 2022-05-11 |
Type : remote |
Platform : android
This exploit / vulnerability Bookeen notea directory traversal is for educational purposes only and if it is used you will do on your own risk!
# The affected version of the Bookeen Notea System Update is prone to directory traversal vulnerability related to its note Export function.
# The vulnerability can be triggered like so :
# - Create a note or use an existing note on the device
# - rename this note ../../../../../../
# - keep touching the note until a menu appears
# - touch to select "export"
# - touch "View"
# Now you can access and explore the device filesystem.