Vulnerabilities > Opensecurity > Mobile Security Framework

DATE CVE VULNERABILITY TITLE RISK
2025-02-05 CVE-2025-24804 Improper Validation of Specified Type of Input vulnerability in Opensecurity Mobile Security Framework
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework.
network
low complexity
opensecurity CWE-1287
4.3
4.3
2025-02-05 CVE-2025-24805 Improper Privilege Management vulnerability in Opensecurity Mobile Security Framework
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework.
local
low complexity
opensecurity CWE-269
5.5
5.5
2024-08-19 CVE-2024-43399 Path Traversal vulnerability in Opensecurity Mobile Security Framework
Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
network
low complexity
opensecurity CWE-22
critical
 9.8
9.8
2024-07-31 CVE-2024-41955 Open Redirect vulnerability in Opensecurity Mobile Security Framework
Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile.
network
low complexity
opensecurity CWE-601
5.4
5.4
2023-09-21 CVE-2023-42261 Incorrect Default Permissions vulnerability in Opensecurity Mobile Security Framework
Mobile Security Framework (MobSF) <=v3.7.8 Beta is vulnerable to Insecure Permissions.
network
low complexity
opensecurity CWE-276
7.5
7.5
2022-10-18 CVE-2022-41547 Unspecified vulnerability in Opensecurity Mobile Security Framework
Mobile Security Framework (MobSF) v0.9.2 and below was discovered to contain a local file inclusion (LFI) vulnerability in the StaticAnalyzer/views.py script.
network
low complexity
opensecurity
7.5
7.5