CVE-2025-5500 | ZhenShi Mibro Fit App 1.6.3.17499 on Android com.xiaoxun.xunoversea.mibrofit AndroidManifest.xml improper export of android application components

Inserito da Angelo Barbosa | Set 9, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in ZhenShi Mibro Fit App 1.6.3.17499 on Android. This impacts an unknown function of the file AndroidManifest.xml of the component com.xiaoxun.xunoversea.mibrofit. This manipulation causes improper export of android application components.

This vulnerability appears as CVE-2025-5500. The attack requires local access. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-5500 | ZhenShi Mibro Fit App 1.6.3.17499 on Android com.xiaoxun.xunoversea.mibrofit AndroidManifest.xml improper export of android application components

Post correlati

CVE-2024-2926 | Livemesh Elementor Addons Plugin up to 8.3.7 on WordPress Widgets cross site scripting

CVE-2025-4057 | Red Hat AMQ Broker 7 ActiveMQ Artemis weak credentials

CVE-2025-4895 | SourceCodester Doctors Appointment System 1.0 delete-session.php ID sql injection

CVE-2025-21675 | Linux Kernel up to 6.1.126/6.6.73/6.12.10 mlx5_lag_destroy_definers null pointer dereference