Mobsf Mobile-security-framework-mobsf
16 CVEs affecting Mobsf Mobile-security-framework-mobsf. Latest disclosed: 2026-03-26. Critical: 0, High: 5.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-24490 | High | 8.1 | 2026-01-27 | MobSF is a mobile application security testing tool used. Prior to version 4.4.5, a Stored Cross-site Scripting (XSS) vulnerability in MobSF's Android manifest… |
CVE-2024-53999 | High | 8.1 | 2024-12-03 | Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. The a… |
CVE-2024-43399 | High | 8.0 | 2024-08-19 | Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. Befor… |
CVE-2024-54000 | High | 7.5 | 2024-12-03 | Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. In ve… |
CVE-2024-29190 | High | 7.5 | 2024-03-22 | Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. In ve… |
CVE-2025-46730 | Medium | 6.8 | 2025-05-05 | MobSF is a mobile application security testing tool used. Typically, MobSF is deployed on centralized internal or cloud-based servers that also host other secu… |
CVE-2025-58162 | Medium | 6.5 | 2025-09-02 | MobSF is a mobile application security testing tool used. In version 4.4.0, an authenticated user who uploaded a specially prepared one.a, can write arbitrary… |
CVE-2024-31215 | Medium | 6.3 | 2024-04-04 | Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile. A SSRF vulnerability in firebase… |
CVE-2026-33545 | Medium | 5.3 | 2026-03-26 | MobSF is a mobile application security testing tool used. Prior to version 4.4.6, MobSF's `read_sqlite()` function in `mobsf/MobSF/utils.py` (lines 542-566) us… |
CVE-2024-41955 | Medium | 5.2 | 2024-07-31 | Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile. An open redirect vulnerability ex… |
CVE-2025-31116 | Medium | 4.4 | 2025-03-31 | Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. The m… |
CVE-2025-58161 | | 2025-09-02 | MobSF is a mobile application security testing tool used. In version 4.4.0, the GET /download/ route uses string path verification via os.path.commonprefix, wh… | |
CVE-2025-46335 | | 2025-05-05 | Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile. A Stored Cross-Site Scripting (XS… | |
CVE-2025-24803 | | 2025-02-05 | Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment fr… | |
CVE-2025-24804 | | 2025-02-05 | Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment fr… | |
CVE-2025-24805 | | 2025-02-05 | Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment fr… |