Количество 3
Количество 3
CVE-2024-31215
Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile. A SSRF vulnerability in firebase database check logic. The attacker can cause the server to make a connection to internal-only services within the organization’s infrastructure. When a malicious app is uploaded to Static analyzer, it is possible to make internal requests. This vulnerability has been patched in version 3.9.8.
GHSA-wpff-wm84-x5cx
Mobile Security Framework (MobSF) vulnerable to SSRF in firebase database check
BDU:2024-03055
Уязвимость компонента Firebase Database Check фреймворка для исследования безопасности мобильных приложений Mobile Security Framework (MobSF), позволяющая нарушителю выполнить SSRF-атаку
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-31215 Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile. A SSRF vulnerability in firebase database check logic. The attacker can cause the server to make a connection to internal-only services within the organization’s infrastructure. When a malicious app is uploaded to Static analyzer, it is possible to make internal requests. This vulnerability has been patched in version 3.9.8. | CVSS3: 6.3 | 0% Низкий | почти 2 года назад |
| GHSA-wpff-wm84-x5cx Mobile Security Framework (MobSF) vulnerable to SSRF in firebase database check | CVSS3: 6.3 | 0% Низкий | почти 2 года назад |
 | BDU:2024-03055 Уязвимость компонента Firebase Database Check фреймворка для исследования безопасности мобильных приложений Mobile Security Framework (MobSF), позволяющая нарушителю выполнить SSRF-атаку | CVSS3: 6.3 | 0% Низкий | почти 2 года назад |
Уязвимостей на страницу