Amaze File Manager Project ≫ Amaze File Manager

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

7.8

CVE-2020-36246

EPSS 0.14%
Published 19.02.2021 05:15:19
Last modified 21.11.2024 05:29:09

Amaze File Manager before 3.5.1 allows attackers to obtain root privileges via shell metacharacters in a symbolic link.

9.8

CVE-2020-35173

EPSS 0.53%
Published 30.12.2020 20:15:15
Last modified 21.11.2024 05:26:53

The Amaze File Manager application before 3.4.2 for Android does not properly restrict intents for controlling the FTP server (aka services.ftpservice.FTPReceiver.ACTION_START_FTPSERVER and services.ftpservice.FTPReceiver.ACTION_STOP_FTPSERVER).