Описание
The National Payments Corporation of India BHIM application 1.3 for Android does not properly restrict use of the OTP feature, which makes it easier for attackers to bypass authentication.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:npci:bharat_interface_for_money_\(bhim\):1.3:*:*:*:*:android:*:*
EPSS
Процентиль: 67%
0.00554
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-287
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
The National Payments Corporation of India BHIM application 1.3 for Android does not properly restrict use of the OTP feature, which makes it easier for attackers to bypass authentication.
EPSS
Процентиль: 67%
0.00554
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-287