Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-8434-V7XW-8M9X
HistoryJan 21, 2022 - 11:03 p.m.

Improper Neutralization of Argument Delimiters in a Decompiling Package Process in APKLeaks

2022-01-2123:03:39
Google
osv.dev
8

0.003 Low

EPSS

Percentile

71.2%

JSON

APKLeaks prior to v2.0.4 allows remote authenticated attackers to execute arbitrary OS commands via package name inside the application manifest.

Impact

An authenticated attacker could include arguments that allow unintended commands or code to be executed, allow sensitive data to be read or modified, or could cause other unintended behavior through malicious package names.

References

  • a966e781499ff6fd4eea66876d7532301b13a382

For more information

If you have any questions or comments about this advisory:

Related

osv 1
nvd 1
cve 1
github 1
cvelist 1
prion 1
osv
osv
CVE-2021-21386
2021-03-24 21:15:15
nvd
nvd
CVE-2021-21386
2021-03-24 21:15:15
cve
cve
CVE-2021-21386
2021-03-24 21:15:15
github
github
Improper Neutralization of Argument Delimiters in a Decompiling Package Process in APKLeaks
2022-01-21 23:03:39
cvelist
cvelist
CVE-2021-21386 Improper Neutralization of Argument Delimiters in a Decompiling Package Process
2021-03-24 20:55:14
prion
prion
Design/Logic Flaw
2021-03-24 21:15:00

0.003 Low

EPSS

Percentile

71.2%

JSON
Related for OSV:GHSA-8434-V7XW-8M9X
osv1nvd1cve1github1cvelist1prion1