VYPR
High severity7.5NVD Advisory· Published Sep 5, 2019· Updated Jun 17, 2026

CVE-2019-11380

CVE-2019-11380

Description

The master-password feature in the ES File Explorer File Manager application 4.2.0.1.3 for Android can be bypassed via a com.estrongs.android.pop.ftp.ESFtpShortcut intent, leading to remote FTP access to the entirety of local storage.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.