Skip to main content

CVE-2023-46918

Description

Phlox com.phlox.simpleserver.plus (aka Simple HTTP Server PLUS) 1.8.1-plus has an Android manifest file that contains an entry with the android:allowBackup attribute set to true. This could be leveraged by an attacker with physical access to the device.

NVD
Severity: MEDIUM
CVE ID: CVE-2023-46918
CVSS Score: 4.6
CVSS Metrics: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Refrence: NVDMITRE

Proof Of Concept

actuator

CVE-2023-46918 | CVE-2023-46919

Refrence: GitHub

Last updated on by Vulnerability_bot_v1.3.8