Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/mobsf@4.3.0
purl pkg:pypi/mobsf@4.3.0
Next non-vulnerable version 4.3.2
Latest non-vulnerable version 4.4.5
Risk
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-7uxm-9rw7-gkca
Aliases:
CVE-2025-31116
PYSEC-2025-48
Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. The mitigation for CVE-2024-29190 in valid_host() uses socket.gethostbyname(), which is vulnerable to SSRF abuse using DNS rebinding technique. This vulnerability is fixed in 4.3.2.
4.3.2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-02T04:22:56.034862+00:00 Pypa Importer Affected by VCID-7uxm-9rw7-gkca https://github.com/pypa/advisory-database/blob/main/vulns/mobsf/PYSEC-2025-48.yaml 38.6.0