Privilege escalation in Mobsf Mobile-security-framework-mobsf

CVE-2025-24805

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework. A local user with minimal privileges is able to make use of an access t…

Vulnerability class: Privilege Escalation

EPSS: 0.002 (42.6th percentile) — read the EPSS interpretation.

Affected products

Mobsf Mobile-security-framework-mobsf — versions = 4.3.0

Weakness classification (CWE)

CWE-269 — Improper Privilege Management

References

https://github.com/MobSF/Mobile-Security-Framework-MobSF/security/advisories/GHSA-79f6-p65j-3m2m (x_refsource_CONFIRM)
https://github.com/MobSF/Mobile-Security-Framework-MobSF/commit/05206e72cae35b311615a70e51e1a946955c5e83 (x_refsource_MISC)