CVE-2024-43399

Name of the Vulnerable Software and Affected Versions Mobile Security Framework (MobSF) versions prior to 4.0.7

Description The issue is related to a flaw in the Static Libraries analysis section of MobSF, specifically during the extraction of .a extension files. The measure intended to prevent Zip Slip attacks is improperly implemented, allowing an attacker to extract files to any desired location within the server running MobSF. This could potentially lead to remote code execution. Over 3,000 services are found to be vulnerable to this issue.

Recommendations For versions prior to 4.0.7, update to version 4.0.7 to fix the vulnerability. As a temporary workaround, consider disabling the Static Libraries analysis section until a patch is available. Restrict access to the vulnerable module to minimize the risk of exploitation. Avoid using the mobsf/StaticAnalyzer/views/common/shared func.py file until the issue is resolved.