Description
An issue was discovered in the singleCrunch function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.
Remediation
References
https://github.com/shenzhim/aaptjs/issues/2
Related Vulnerabilities
CVE-2020-19676 Vulnerability in maven package com.alibaba.nacos:nacos-api
CVE-2020-8913 Vulnerability in maven package com.google.android.play:core
CVE-2021-43980 Vulnerability in maven package org.apache.tomcat:tomcat
CVE-2020-22755 Vulnerability in maven package net.mingsoft:ms-mcms
CVE-2019-10747 Vulnerability in maven package org.webjars.npm:set-value