CVE-2024-3128

Name of the Vulnerable Software and Affected Versions Replify-Messenger version 1.0

Description A vulnerability has been found in the processing of the file androidmanifest.xml of the component Backup File Handler. This issue leads to exposure of backup files to an unauthorized control sphere, allowing potential attacks on physical devices. The exploit has been disclosed to the public. The vendor has been contacted and has decided not to maintain the app anymore, planning to revoke its availability in the Google Play Store.

Recommendations As a temporary workaround, consider removing the app and seeking alternatives to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.