module
Rapid7 Metasploit Framework msfvenom APK Template Command Injection
| Disclosed |
|---|
| Oct 29, 2020 |
Disclosed
Oct 29, 2020
Description
This module exploits a command injection vulnerability in Metasploit Framework's msfvenom
payload generator when using a crafted APK file as an Android payload template. Affects
Metasploit Framework module is a relatively empty yet valid-enough APK file. To trigger the vulnerability,
the victim user should do the following:
msfvenom -p android/
payload generator when using a crafted APK file as an Android payload template. Affects
Metasploit Framework module is a relatively empty yet valid-enough APK file. To trigger the vulnerability,
the victim user should do the following:
msfvenom -p android/
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.