Lucene search
GitHub_MCVELIST:CVE-2024-41955HistoryJul 31, 2024 - 7:21 p.m.
CVE-2024-41955 Mobile Security Framework (MobSF) has an Open Redirect in Login Redirect
2024-07-3119:21:16
CWE-601
GitHub_M
www.cve.org
4
mobsf
v4.0.5
open redirect
CVSS3
5.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:H/A:N
EPSS
0.001
Percentile
32.5%
Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile. An open redirect vulnerability exist in MobSF authentication view. Update to MobSF v4.0.5.
CNA Affected
[
{
"vendor": "MobSF",
"product": "Mobile-Security-Framework-MobSF",
"versions": [
{
"version": "< 4.0.5",
"status": "affected"
}
]
}
]Related
nvd
nvd
CVE-2024-41955
2024-07-31 20:15:06
osv
osv
MobSF vulnerable to Open Redirect in Login Redirect
2024-07-31 20:54:08
CVE-2024-41955
2024-07-31 20:15:06
cve
cve
CVE-2024-41955
2024-07-31 20:15:06
vulnrichment
vulnrichment
veracode
veracode
Open Redirection
2024-08-01 20:10:03
github
github
MobSF vulnerable to Open Redirect in Login Redirect
2024-07-31 20:54:08
CVSS3
5.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:H/A:N
EPSS
0.001
Percentile
32.5%
Related for CVELIST:CVE-2024-41955