MaruNuri neo.maru App Arbitrary File Overwrite Vulnerability Allowing Code Execution

An arbitrary file overwrite vulnerability has been identified in the neo.maru app by MaruNuri LLC, specifically in version 2.0.23. This vulnerability allows attackers to overwrite critical internal files through the file import process, potentially leading to arbitrary code execution or exposure of sensitive information. The issue arises from inadequate security validation when handling imported files, enabling a malicious app to manipulate filenames and contents to overwrite sensitive files in the app's internal storage. Modifying essential configuration or executable files could cause the app to malfunction, fail to launch, or execute unauthorized code. Notably, this vulnerability can be exploited automatically without complex user interaction, once the victim opens the malicious app.

Impact

Exploitation of this vulnerability could result in overwriting critical internal files, with the potential to execute arbitrary code, expose sensitive information, or cause the app to malfunction or fail to launch.

Reproduction

To reproduce this vulnerability, a malicious app must be created that exploits the file import process in the neo.maru app. The malicious app should be designed to manipulate filenames and contents, using path traversal techniques to overwrite sensitive files in the neo.maru app's internal storage. Once the malicious app is installed and opened by the user, it can automatically trigger the vulnerability by importing files that exploit the inadequate security validation.