Amaze File Manager Project: >> Amaze File Manager >> 3.1.0 Security Vulnerabilities
Amaze File Manager before 3.5.1 allows attackers to obtain root privileges via shell metacharacters in a symbolic link.
CVSS Score
7.8
EPSS Score
0.001
Published
2021-02-19
The Amaze File Manager application before 3.4.2 for Android does not properly restrict intents for controlling the FTP server (aka services.ftpservice.FTPReceiver.ACTION_START_FTPSERVER and services.ftpservice.FTPReceiver.ACTION_STOP_FTPSERVER).
CVSS Score
9.8
EPSS Score
0.005
Published
2020-12-30