CVE-2024-54681

Summary

Multiple bash files were present in the application's private directory. Bash files can be used on their own, by an attacker that has already full access to the mobile platform to compromise the translations for the application.

Affected Software

VendorProductVersion RangeStatus
OssurMobile Logic Application0 < 1.5.5affected

Weaknesses

  • CWE-77: CWE-77 Command Injection

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References