CVE-2025-9098 | Elseplus File Recovery App 4.4.21 on Android AndroidManifest.xml improper export of android application components

Inserito da Angelo Barbosa | Ago 17, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in Elseplus File Recovery App 4.4.21 on Android. Affected by this issue is some unknown functionality of the file AndroidManifest.xml. The manipulation leads to improper export of android application components.

This vulnerability is handled as CVE-2025-9098. The attack needs to be approached locally. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-9098 | Elseplus File Recovery App 4.4.21 on Android AndroidManifest.xml improper export of android application components

Post correlati

CVE-2025-24356 | neocturne fastd up to 22 Ethernet Frame amplification

CVE-2024-2935 | SourceCodester Todo List in Kanban Board 1.0 Add ToDo cross site scripting

CVE-2023-49351 | Edimax BR6478AC V2 1.23 /bin/webs strcpy stack-based overflow

CVE-2025-0335 | code-projects Online Bike Rental System 1.0 Change Image unrestricted upload