Описание
Phlox com.phlox.simpleserver.plus (aka Simple HTTP Server PLUS) 1.8.1-plus has an Android manifest file that contains an entry with the android:allowBackup attribute set to true. This could be leveraged by an attacker with physical access to the device.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:fedirtsapana:simple_http_server_plus:1.8.1-plus:*:*:*:*:android:*:*
EPSS
Процентиль: 28%
0.001
Низкий
4.6 Medium
CVSS3
Дефекты
CWE-798
Связанные уязвимости
CVSS3: 4.6
github
около 2 лет назад
Phlox com.phlox.simpleserver.plus (aka Simple HTTP Server PLUS) 1.8.1-plus has an Android manifest file that contains an entry with the android:allowBackup attribute set to true. This could be leveraged by an attacker with physical access to the device.
EPSS
Процентиль: 28%
0.001
Низкий
4.6 Medium
CVSS3
Дефекты
CWE-798