Moderate severityNVD Advisory· Published Jul 31, 2024· Updated Aug 1, 2024

Mobile Security Framework (MobSF) has an Open Redirect in Login Redirect

CVE-2024-41955

Description

Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile. An open redirect vulnerability exist in MobSF authentication view. Update to MobSF v4.0.5.

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
mobsfPyPI	< 4.0.5	4.0.5

Affected products

Mobsf/Mobile Security Framework Mobsfv5
Range: < 4.0.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/advisories/GHSA-8m9j-2f32-2vx4ghsaADVISORY
nvd.nist.gov/vuln/detail/CVE-2024-41955ghsaADVISORY
github.com/MobSF/Mobile-Security-Framework-MobSF/commit/fdaad81314f393d324c1ede79627e9d47986c8c8ghsax_refsource_MISCWEB
github.com/MobSF/Mobile-Security-Framework-MobSF/security/advisories/GHSA-8m9j-2f32-2vx4ghsax_refsource_CONFIRMWEB

News mentions

No linked articles in our index yet.

cvss	0.260
epss	0.012
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000