CVE-2020-36245
pypi/gramaddict
Code Injection
GramAddict allows remote attackers to execute arbitrary code because of use of UIAutomator2 and ATX-Agent. The attacker must be able to reach TCP port, e.g.
, by being on the same Wi-Fi network.
All versions up to 1.2.3
Upgrade to version 1.2.4 or above.
2021-02-26
source |