Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Musicshelf Backup androidmanifest.xml backup
Vulnerability Description
A vulnerability classified as problematic has been found in Musicshelf 1.0/1.1 on Android. Affected is an unknown function of the file androidmanifest.xml of the component Backup Handler. The manipulation leads to exposure of backup file to an unauthorized control sphere. It is possible to launch the attack on the physical device. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-256320.
CVSS Information
CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
将备份文件暴露给非授权控制范围
Vulnerability Title
Musicshelf 安全漏洞
Vulnerability Description
Musicshelf是RedNesto个人开发者的一款音乐架软件。用于帮助管理乐谱(和各种相关资产)。 Musicshelf 1.0、1.1版本存在安全漏洞,该漏洞源于组件Backup Handler 中的 androidmanifest.xml 包含未知函数,导致将备份文件暴露。
CVSS Information
N/A
Vulnerability Type
N/A