CVE-2025-14702 | Smartbit CommV Smartschool App up to 10.4.4 be.smartschool.mobile.SplashActivity path traversal

A vulnerability described as problematic has been identified in Smartbit CommV Smartschool App up to 10.4.4. Impacted is an unknown function of the component be.smartschool.mobile.SplashActivity. Executing manipulation can lead to path traversal.

This vulnerability appears as CVE-2025-14702. The attack requires local access. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More