Jehovah's Witnesses JW Library App Path Traversal Vulnerability

A path traversal vulnerability has been identified in the Jehovah's Witnesses JW Library App for Android, in versions up to 15.5.1. The issue arises from the app's component 'org.jw.jwlibrary.mobile.activity.SiloContainer', where insufficient security validation allows malicious apps to manipulate file names and contents. This exploitation can overwrite critical internal files, potentially leading to arbitrary code execution, denial of service, and other serious security consequences. The vulnerability requires local access to exploit.

Impact

Exploitation of this vulnerability allows for path traversal, enabling unauthorized overwriting of files in the app's internal storage. This could disrupt the app's functionality or, if executable files are targeted, result in the execution of arbitrary code.

Reproduction

The vulnerability can be reproduced by sending an intent from a malicious app to the JW Library app's SiloContainer activity. The intent must include a file URI that traverses the directory structure to reach a sensitive file, such as a preferences XML file. Once the JW Library app processes the intent, the specified file will be overwritten with the attacker's chosen content.