CVE-2020-36378: Vulnerability in packageCmd function leads to arbitrary code execution via filePath parameters

Severity: Critical

CVSS Score: 9.8

An issue was discovered in the packageCmd function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.