PT-2025-33627 · Unknown+1 · Elseplus File Recovery App+1
Fxizenta
·
Published
2025-08-18
·
Updated
2025-08-18
·
CVE-2025-9098
CVSS v3.1
5.3
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions:
Elseplus File Recovery App version 4.4.21
Description:
A vulnerability exists in Elseplus File Recovery App version 4.4.21 on Android. The issue affects an unknown functionality within the
AndroidManifest.xml file, leading to the improper export of Android application components. The attack requires local access. The exploit for this issue has been publicly disclosed. The vendor was informed of the disclosure but did not respond.Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
LPE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Android
Elseplus File Recovery App