Project

General

Profile

Actions
Copy link

Support #1680

open

Mobsf - Security Issuse

Added by Misbha G 5 months ago. Updated 5 months ago.

Status:
New
Priority:
Urgent
Assignee:
Misbha G
Start date:
07/11/2025
Due date:
% Done:

0%

Estimated time:
(Total: 0:00 h)

Description

  • App can be installed on a vulnerable unpatched Android version
  • Clear text traffic is Enabled For App
  • The App uses the encryption mode CBC with PKCS5/PKCS7 padding. This configuration is vulnerable to padding oracle attacks.
  • Remote WebView debugging is enabled.

Subtasks 4 (4 open0 closed)

Bug #1681: App can be installed on a vulnerable unpatched Android versionResolvedElangovan M07/11/2025

Actions
Bug #1682: Clear text traffic is Enabled For AppResolvedPriyadharshini B07/11/2025

Actions
Bug #1683: The App uses the encryption mode CBC with PKCS5/PKCS7 padding. This configuration is vulnerable to padding oracle attacks.In ProgressElangovan M07/11/2025

Actions
Bug #1684: Remote WebView debugging is enabled.NewPriyadharshini B07/11/2025

Actions
Actions
Copy link

Also available in: Atom PDF