PT-2024-27911 · Unknown · Quick Share

Published

2024-04-17

Updated

2025-04-07

CVE-2024-38272

CVSS v4.0

7.1

High

Vector

AV:A/AC:H/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L

Name of the Vulnerable Software and Affected Versions Quick Share versions prior to 1.0.1724.0

Description The issue allows an attacker to bypass the accept file dialog on Quick Share Windows. Normally, the Quick Share Windows app requires user acceptance from the receiving device to send a file when visibility is set to everyone mode or contacts mode.

Recommendations For versions prior to 1.0.1724.0, upgrade to version 1.0.1724.0 or above to resolve the issue.

Fix

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404CWE-294

Related Identifiers

BDU:2025-05014

CVE-2024-38272

Affected Products

Quick Share

PT-2024-27911 · Unknown · Quick Share

CVE-2024-38272

Weakness Enumeration

Related Identifiers

Affected Products

References · 14