CVE-2024-2045

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-2045

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-2045.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-2045

Published

2024-03-01T00:15:52.493Z

Modified

2026-03-13T07:49:44.770102Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

Session version 1.17.5 allows obtaining internal application files and public

files from the user's device without the user's consent. This is possible

because the application is vulnerable to Local File Read via chat attachments.

References

Affected packages

Git / github.com/oxen-io/session-android

Affected ranges

Type

GIT

Repo

https://github.com/oxen-io/session-android

Events

Introduced

Last affected

bdb6e7d12b05f3e08fdd54f265dc2a8bff1de36e

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.17.5"
        }
    ]
}

Affected versions

1.*

1.0.0

1.0.0-alpha.1

1.0.0-alpha.2

1.0.0-alpha.3

1.0.0-alpha.4

1.0.0-alpha.5

1.0.1

1.0.10

1.0.11

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

1.0.8

1.0.9

1.1.0

1.1.0-alpha.1

1.1.0-alpha.2

1.1.0-alpha.3

1.10.0

1.10.1

1.10.10

1.10.11

1.10.12

1.10.13

1.10.2

1.10.3

1.10.4

1.10.5

1.10.6

1.10.7

1.10.8

1.10.9

1.11.0

1.11.1

1.11.10

1.11.11

1.11.12

1.11.13

1.11.14

1.11.15

1.11.16

1.11.17

1.11.19

1.11.2

1.11.20

1.11.3

1.11.4

1.11.5

1.11.6

1.11.7

1.11.8

1.11.9

1.12.15

1.13.0

1.13.1

1.13.4

1.13.5

1.13.6

1.13.7

1.14.0

1.14.1

1.15.1

1.15.2

1.15.3

1.15.4

1.16.0

1.16.1

1.16.3

1.16.4

1.16.5

1.16.7

1.16.8

1.16.9

1.17.0

1.17.1

1.17.2

1.17.3

1.17.4

1.17.5

1.2.0

1.2.0-alpha-1

1.2.0-alpha.2

1.2.1

1.2.2

1.2.3

1.2.4

1.2.5

1.3.0

1.3.0-alpha.1

1.3.1

1.3.2

1.4.0

1.4.0-beta

1.4.1

1.4.1-beta

1.4.2

1.4.3

1.4.4

1.4.5

1.4.6

1.4.7

1.5.0

1.5.0-beta

1.5.1-beta

1.5.2

1.5.2-beta

1.5.3

1.5.4

1.6.0

1.6.1

1.6.2

1.6.3

1.6.4

1.7.0

1.7.1

1.7.3

1.7.4

1.8.0

1.8.1

1.9.0

1.9.1

2.*

2.0.4

Other

audit

v0.*

v0.6

v0.6.1

v0.6.2

v0.7

v0.7.2

v0.7.3

v0.7.4

v0.8

v0.8.1

v0.8.2

v0.8.3

v0.8.4

v0.8.5

v0.8.6

v0.9

v0.9.1

v0.9.2

v0.9.3

v0.9.4

v0.9.5

v0.9.6

v0.9.7

v0.9.8

v0.9.9.1

v0.9.9.2

v0.9.9.3

v0.9.9.4

v0.9.9.5

v0.9.9.6

v0.9.9.7

v0.9.9.8

v0.9.9.9

v1.*

v1.0

v1.0.1

v1.0.2

v1.0.3

v1.0.4

v1.0.5

v1.0.6

v2.*

v2.0

v2.0.1

v2.0.2

v2.0.3

v2.0.5

v2.0.6

v2.0.7

v2.0.8

v2.1.0

v2.1.1

v2.1.10

v2.1.2

v2.1.4

v2.1.6

v2.1.7

v2.1.8

v2.1.9

v2.10.0

v2.10.1

v2.10.2

v2.11.0

v2.11.1

v2.12.0

v2.13.0

v2.14.0

v2.14.1

v2.14.2

v2.14.3

v2.14.4

v2.16.0

v2.16.1

v2.16.2

v2.16.3

v2.16.4

v2.17.0

v2.18.0

v2.18.1

v2.18.2

v2.19.0

v2.19.1

v2.2.0

v2.21.0

v2.22.0

v2.22.1

v2.22.2

v2.23.0

v2.23.1

v2.23.3

v2.24.0

v2.24.1

v2.25.0

v2.25.1

v2.25.3

v2.26.0

v2.26.2

v2.26.3

v2.26.5

v2.27.0

v2.27.1

v2.27.2

v2.28.0

v2.28.1

v2.3.0

v2.3.1

v2.3.2

v2.3.3

v2.32.2

v2.4.1

v2.4.2

v2.5.1

v2.5.2

v2.5.3

v2.6.0

v2.6.2

v2.6.3

v2.6.4

v2.7.0-B1

v2.8.0

v2.9.1

v2.9.2

v2.9.3

v3.*

v3.0.0

v3.0.1

v3.0.2

v3.0.3

v3.1.0

v3.1.1

v3.10.0

v3.11.0

v3.11.1

v3.12.0

v3.13.0

v3.13.1

v3.14.0

v3.14.1

v3.14.2

v3.15.0

v3.15.1

v3.15.2

v3.16.0

v3.16.1

v3.17.0

v3.18.0

v3.18.1

v3.18.2

v3.18.3

v3.19.0

v3.20.1

v3.20.2

v3.20.3

v3.20.4

v3.21.0

v3.21.1

v3.21.2

v3.21.3

v3.22.0

v3.22.1

v3.22.2

v3.23.0

v3.24.0

v3.24.1

v3.25.0

v3.25.1

v3.25.2

v3.25.3

v3.25.4

v3.26.0

v3.26.1

v3.26.2

v3.27.0

v3.27.1

v3.28.0

v3.28.1

v3.28.2

v3.28.3

v3.28.4

v3.29.2

v3.29.4

v3.29.5

v3.29.6

v3.3.0

v3.3.1

v3.3.2

v3.30.0

v3.30.1

v3.30.2

v3.30.3

v3.30.4

v3.31.0

v3.31.1

v3.31.2

v3.31.4

v3.4.0

v3.4.2

v3.5.0

v3.5.1

v3.5.2

v3.6.0

v3.6.1

v3.7.0

v3.7.1

v3.7.2

v3.8.0

v3.9.0

v3.9.1

v4.*

v4.0.0

v4.0.1

v4.1.0

v4.10.1

v4.10.10

v4.10.11

v4.10.12

v4.10.2

v4.10.5

v4.10.6

v4.10.7

v4.10.8

v4.10.9

v4.11.1

v4.11.2

v4.11.3

v4.11.5

v4.12.3

v4.13.0

v4.13.1

v4.13.2

v4.13.3

v4.13.4

v4.13.5

v4.13.6

v4.13.7

v4.14.0

v4.14.1

v4.14.10

v4.14.2

v4.14.4

v4.14.5

v4.14.6

v4.14.7

v4.14.8

v4.14.9

v4.15.0

v4.15.1

v4.15.2

v4.15.3

v4.15.5

v4.16.3

v4.16.4

v4.16.6

v4.16.7

v4.16.9

v4.17.0

v4.17.1

v4.17.2

v4.17.3

v4.17.4

v4.17.5

v4.18.0

v4.18.1

v4.18.2

v4.18.3

v4.19.1

v4.19.2

v4.19.3

v4.2.0

v4.2.1

v4.2.2

v4.2.3

v4.2.4

v4.2.5

v4.20.2

v4.20.3

v4.20.4

v4.20.5

v4.20.6

v4.20.7

v4.20.8

v4.20.9

v4.21.0

v4.21.1

v4.21.2

v4.21.3

v4.21.4

v4.21.5

v4.21.6

v4.22.0

v4.22.1

v4.22.2

v4.22.3

v4.22.4

v4.23.0

v4.23.1

v4.23.2

v4.23.3

v4.23.4

v4.24.0

v4.24.1

v4.24.2

v4.24.3

v4.24.4

v4.24.5

v4.24.6

v4.24.7

v4.24.8

v4.25.0

v4.25.1

v4.25.10

v4.25.2

v4.25.3

v4.25.4

v4.25.5

v4.25.6

v4.25.7

v4.25.8

v4.25.9

v4.26.0

v4.26.1

v4.26.2

v4.27.0

v4.27.1

v4.27.2

v4.27.3

v4.28.0

v4.28.1

v4.29.0

v4.29.1

v4.29.2

v4.29.3

v4.29.4

v4.29.5

v4.29.6

v4.29.7

v4.3.0

v4.3.1

v4.3.2

v4.30.0

v4.30.1

v4.30.2

v4.30.4

v4.30.5

v4.30.6

v4.30.7

v4.31.0

v4.31.1

v4.31.2

v4.31.3

v4.31.4

v4.31.5

v4.31.6

v4.31.7

v4.31.8

v4.32.0

v4.32.1

v4.32.2

v4.32.3

v4.32.4

v4.32.5

v4.32.6

v4.32.7

v4.32.8

v4.33.0

v4.33.1

v4.33.2

v4.33.3

v4.33.4

v4.33.5

v4.34.0

v4.34.1

v4.34.2

v4.34.3

v4.34.4

v4.34.5

v4.34.6

v4.34.7

v4.34.8

v4.35.0

v4.35.1

v4.35.2

v4.35.3

v4.36.0

v4.36.1

v4.36.2

v4.37.0

v4.37.1

v4.37.2

v4.38.0

v4.38.1

v4.38.2

v4.38.3

v4.39.0

v4.39.1

v4.39.2

v4.39.3

v4.39.4

v4.4.0

v4.40.0

v4.40.1

v4.40.2

v4.40.3

v4.40.4

v4.41.0

v4.5.0

v4.5.2

v4.5.3

v4.6.0

v4.7.0

v4.7.1

v4.7.2

v4.7.3

v4.7.4

v4.8.0

v4.8.1

v4.9.0

v4.9.1

v4.9.2

v4.9.3

v4.9.4

v4.9.5

v4.9.6

v4.9.8

v4.9.9

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-2045.json"