Vulnerability in Mobsf Mobile-security-framework-mobsf

CVE-2025-24804

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework. According to Apple's documentation for bundle ID's, it must contain onl…

EPSS: 0.001 (35.2th percentile) — read the EPSS interpretation.

Affected products

Mobsf Mobile-security-framework-mobsf — versions = 4.3.0

Weakness classification (CWE)

CWE-1287

References

https://github.com/MobSF/Mobile-Security-Framework-MobSF/security/advisories/GHSA-jrm8-xgf3-fwqr (x_refsource_CONFIRM)
https://github.com/MobSF/Mobile-Security-Framework-MobSF/commit/05206e72cae35b311615a70e51e1a946955c5e83 (x_refsource_MISC)
https://developer.apple.com/documentation/bundleresources/information-property-list/cfbundleidentifier (x_refsource_MISC)