18 matches found
CVE-2025-46335
The CVE-2025-46335 entry concerns Mobile Security Framework (MobSF) and describes a Stored Cross-Site Scripting (XSS) vulnerability in MobSF versions up to 4.3.2, arising from improper sanitization of user-supplied SVG files during the Android APK analysis workflow. Affected component: MobSF Andr...
CVE-2024-29190
MobSF (Mobile Security Framework) vulnerability CVE-2024-29190 causes SSRF via hostname extraction in android:host when input validation is not performed in versions up to 3.9.5 Beta. The issue arises from host resolution in valid_host(), where socket.gethostbyname() can be abused with DNS rebind...
CVE-2025-31116
CVE-2025-31116 relates to Mobile Security Framework (MobSF) and its valid_host() function, where DNS rebinding enables SSRF. The vulnerability arises from using socket.gethostbyname() and local/invalid-prefix checks that can be bypassed, allowing DNS-based host resolution to reach internal resour...
CVE-2024-54000
CVE-2024-54000 affects MobSF prior to 3.9.7. The root cause is in _check_url using requests.get() with allow_redirects=True, enabling an SSRF when a .well-known/assetlinks.json response returns a 302 redirect. This bypasses the prior fix for CVE-2024-29190 and is fixed in MobSF 3.9.7. The connect...
CVE-2025-24804
CVE-2025-24804 affects MobSF (Mobile Security Framework). A flaw in the Info.plist CFBundleIdentifier parsing allows an attacker to inject special characters into the bundle ID, causing the application to fail to render content and throw a 500 error (DoS-like unavailability). The vulnerability is...
CVE-2024-31215
MobSF (Mobile Security Framework) is affected by a Server-Side Request Forgery (SSRF) in the firebase database check logic. The vulnerability allows an attacker to cause the MobSF server to connect to internal-only services within the organization’s infrastructure when a malicious app is uploaded...
CVE-2025-24805
CVE-2025-24805 concerns the Mobile Security Framework (MobSF). A local-privilege issue affects users with minimal privileges who can obtain an API token with elevated privileges, enabling access to materials scoped beyond their rights via the token mechanism (notably involving the /source_code/to...
CVE-2025-24803
MobSF contains a Stored XSS in the iOS Dynamic Analyzer due to unsanitized CFBundleIdentifier input from Corellium in dynamic_analysis.html. An attacker can modify Info.plist to include special characters and trigger HTML context breaks when a malicious app is uploaded, enabling actions as users ...
CVE-2024-53999
MobSF suffers a Stored Cross-Site Scripting (XSS) vulnerability in the Diff or Compare functionality. The issue stems from allowing scripts in the filename parameter during file uploads, enabling a malicious actor to upload a script and trigger its execution when users invoke the diff/compare fea...
CVE-2024-41955
Summary: CVE-2024-41955 affects Mobile Security Framework (MobSF). The vulnerability is an open redirect in the authentication view, potentially allowing an attacker to redirect authenticated users to a malicious site after login. Multiple sources document this as MobSF open redirect, with remedi...
CVE-2025-46730
MobSF (Mobile Security Framework) versions up to 4.3.2 are vulnerable to a ZIP of Death due to missing a check on the total uncompressed size of uploaded ZIP files. An attacker can craft a small ZIP that expands to gigabytes, exhausting disk space and causing a DoS affecting MobSF and other on‑ho...
CVE-2023-42261
CVE-2023-42261 affects Mobile Security Framework (MobSF)
CVE-2022-41547
MobSF (Mobile Security Framework) is affected up to version 0.9.2, with a local file inclusion (LFI) vulnerability in StaticAnalyzer/views.py that allows reading arbitrary files via a crafted HTTP request. The CVE notes a CVSS v3.1 base score of 7.5 (HIGH) with network attack vector, no authentic...
CVE-2024-43399
MobSF (Mobile Security Framework) prior to version 4.0.7 contains a Zip Slip vulnerability in the Static Libraries analysis when extracting .a files. The mitigation (decoding and string replacement) is bypassable (e.g., using sequences like ....//....//....//), allowing extraction to arbitrary se...
CVE-2025-58161
MobSF (Mobile Security Framework) CVE-2025-58161: The 4.4.0 release exposes a directory traversal via GET /download/ caused by using os.path.commonprefix for path validation. An authenticated user can access files outside the DWD_DIR by requesting a path like /download////file (or equivalents tha...
CVE-2025-58162
Summary: CVE-2025-58162 affects MobSF. An authenticated user uploading a specially crafted .a archive can write arbitrary files to any location writable by the MobSF process, due to improper handling of absolute paths during AR extraction (ar_extract writes Path(dst)/filtered without validating a...
CVE-2026-24490
MobSF (Mobile Security Framework)
CVE-2026-33545
Summary: CVE-2026-33545 affects MobSF before 4.4.6, where read_sqlite() builds SQL queries by interpolating table names from sqlite_master using Python string formatting. This enables attacker-controlled table names to cause a DoS via a PRAGMA table_info() syntax error and, in isolation, SQL inje...