CVE-2024-54000

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions: Mobile Security Framework (MobSF) versions prior to 3.9.7

Description: The issue concerns a server-side request forgery vulnerability. It occurs when the requests.get() request in the check url method is set to allow redirects=True, allowing a redirect when a request to .well-known/assetlinks.json returns a 302 redirect. This vulnerability is a bypass of a previous fix.

Recommendations: For versions prior to 3.9.7, update to version 3.9.7 to resolve the issue. As a temporary workaround, consider setting allow redirects=False in the requests.get() request of the check url method to prevent server-side request forgery. Restrict access to the check url method to minimize the risk of exploitation.

Exploit

Fix

SSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-918

Related Identifiers

CVE-2024-54000

GHSA-M435-9V6R-V5F6

PYSEC-2024-256

Affected Products

Mobile Security Framework

CVE-2024-54000

Weakness Enumeration

Related Identifiers

Affected Products

References · 13