Vulnerabilities > CVE-2020-35173 - Unspecified vulnerability in Amaze File Manager Project Amaze File Manager

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
amaze-file-manager-project
NVD
Published: 2020-12-30
Updated: 2021-01-04

Summary

The Amaze File Manager application before 3.4.2 for Android does not properly restrict intents for controlling the FTP server (aka services.ftpservice.FTPReceiver.ACTION_START_FTPSERVER and services.ftpservice.FTPReceiver.ACTION_STOP_FTPSERVER).

Vulnerable Configurations

Part Description Count
Application
Amaze_File_Manager_Project
40

References