Skip to main content
Solved

IFS Field Service using unsecure functions on android


Chandima Athukorala
Hero (Employee)
Forum|alt.badge.img+6
We have observed IFS Field Service using unsecure functions on android. The mobile application is using com.aviary.android.feather.common.utils.IOUtils.unzipEntry in an unsecure way. See https://support.google.com/faqs/answer/9294009 for specs on how to fix the issue. We are using FSM 5.7. update 6. Do you have any idea if this has been looked in already?

Best answer by Dhanushki Pahathkumbure

This issue identified by Google is in an unused library contained with the third party Aviary SDK and does not pose a security risk. The FSM Mobile solution uses that SDK only to allow users to edit attached images.
View original
Did this topic help you find an answer to your question?

2 replies

Dhanushki Pahathkumbure
Hero (Employee)
Forum|alt.badge.img+15
This issue identified by Google is in an unused library contained with the third party Aviary SDK and does not pose a security risk. The FSM Mobile solution uses that SDK only to allow users to edit attached images.

Forum|alt.badge.img+6

This third party Aviary SDK and does not pose a security risk. The FSM Mobile solution uses that SDK only to allow users to edit attached images.

 


Reply


Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings