← back
CVE-2022-50950

Webile 1.0.1 Directory Traversal Vulnerability via Web Application

CVSS 7.1 HIGHEPSS 0.9%CWE-22
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.1EPSS 0.9%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
01 Feb 2026Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Webile 1.0.1 contains a directory traversal vulnerability that allows remote attackers to manipulate file system paths without authentication. Attackers can exploit path manipulation to access sensitive system directories and potentially compromise the mobile device's local file system.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N