module
Rapid7 Metasploit Framework msfvenom APK Template Command Injection
| Disclosed |
|---|
| Oct 29, 2020 |
Disclosed
Oct 29, 2020
Description
This module exploits a command injection vulnerability in Metasploit Framework's msfvenom
payload generator when using a crafted APK file as an Android payload template. Affects
Metasploit Framework module is a relatively empty yet valid-enough APK file. To trigger the vulnerability,
the victim user should do the following:
msfvenom -p android/
payload generator when using a crafted APK file as an Android payload template. Affects
Metasploit Framework module is a relatively empty yet valid-enough APK file. To trigger the vulnerability,
the victim user should do the following:
msfvenom -p android/
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.