Description
MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise. Prior to version 2026.5.12, there is a path traversal vulnerability via unsanitized File identifiers in iOS Backup processing. This issue has been patched in version 2026.5.12.
Published: 2026-06-08
Score: 5.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The Mobile Verification Toolkit incorporates a path traversal flaw that occurs when it processes iOS backup files. Unsanitized file identifiers are concatenated into file path construction, permitting traversal outside the intended backup directory. Attackers can read any file within the MVT execution environment, potentially exposing sensitive backup data, but the flaw does not enable code execution or compromise the host system beyond the backup scope.

Affected Systems

The flaw affects the Mobile Verification Toolkit released by mvt-project. All versions prior to 2026.5.12 are vulnerable. The 2026.5.12 release contains the fix.

Risk and Exploitability

The CVSS score of 5.3 indicates moderate risk, no EPSS score is available, and the vulnerability is not listed in the CISA KEV catalog. Based on the description, the likely attack vector is local: an adversary must have the ability to run MVT and supply malicious identifiers during iOS backup ingestion. This inference is drawn from the need to manipulate the tool’s internal path construction. No publicly known exploitation code or remote exploitation pathway has been observed.

Generated by OpenCVE AI on June 8, 2026 at 21:35 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to MVT version 2026.5.12 or newer.
  • Restrict MVT use to trusted users and ensure backups are stored in secure, access‑controlled locations.
  • Run MVT within a sandbox or chrooted environment to limit file system visibility to the intended backup directory.

Generated by OpenCVE AI on June 8, 2026 at 21:35 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-5h3g-px23-w6vw Mobile Verification Toolkit (MVT): Path Traversal via unsanitized File identifiers in iOS Backup processing
History

Tue, 09 Jun 2026 09:15:00 +0000

Type Values Removed Values Added
First Time appeared Mvt-project
Mvt-project mvt
Vendors & Products Mvt-project
Mvt-project mvt

Mon, 08 Jun 2026 21:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 08 Jun 2026 19:00:00 +0000

Type Values Removed Values Added
Description MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise. Prior to version 2026.5.12, there is a path traversal vulnerability via unsanitized File identifiers in iOS Backup processing. This issue has been patched in version 2026.5.12.
Title Mobile Verification Toolkit (MVT): Path Traversal via unsanitized File identifiers in iOS Backup processing
Weaknesses CWE-22
References
Metrics cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Mvt-project Mvt
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-08T19:51:37.146Z

Reserved: 2026-05-14T18:06:06.811Z

Link: CVE-2026-46486

cve-icon Vulnrichment

Updated: 2026-06-08T19:51:32.500Z

cve-icon NVD

Status : Deferred

Published: 2026-06-08T19:16:45.777

Modified: 2026-06-09T15:25:56.860

Link: CVE-2026-46486

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-09T08:56:38Z

Weaknesses