3 matches found
CVE-2020-35398
An issue was discovered in UTI Mutual fund Android application 5.4.18 and prior, allows attackers to brute force enumeration of usernames determined by the error message returned after invalid credentials are attempted...
CVE-2020-35398
An issue was discovered in UTI Mutual fund Android application 5.4.18 and prior, allows attackers to brute force enumeration of usernames determined by the error message returned after invalid credentials are attempted...
CVE-2020-35398
CVE-2020-35398 affects the UTI Mutual fund Android app (versions 5.4.18 and earlier). The issue allows brute-forcing username enumeration via the error message shown after invalid credentials, enabling attackers to identify valid usernames. Documents consistently describe the vulnerability as an ...