CVE-2023-27648
Severity CVSS v4.0:
Pending analysis
Type:
CWE-22
Path Traversal
Publication date:
14/04/2023
Last modified:
10/02/2025
Description
Directory Traversal vulnerability found in T-ME Studios Change Color of Keypad v.1.275.1.277 allows a remote attacker to execute arbitrary code via the dex file in the internal storage.
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:timmystudios:change_color_of_keypad:1.275.1.277:*:*:*:*:android:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://corporate.timmystudios.com/
- https://github.com/LianKee/SODA/blob/main/CVEs/CVE-2023-27648/CVE%20detail.md
- https://play.google.com/store/apps/details?id=com.jb.gokeyboard.theme.twchangecolorofkeypad
- https://corporate.timmystudios.com/
- https://github.com/LianKee/SODA/blob/main/CVEs/CVE-2023-27648/CVE%20detail.md
- https://play.google.com/store/apps/details?id=com.jb.gokeyboard.theme.twchangecolorofkeypad