EUVD-2020-19927

Malware in sbrugna...

EUVD-2020-19924

Malware in sbrugna...

CVE-2020-27413

An issue was discovered in Mahavitaran android application 7.50 and below, allows local attackers to read cleartext username and password while the user is logged into the application...

CVE-2020-27416

Mahavitaran android application 7.50 and prior are affected by account takeover due to improper OTP validation, allows remote attackers to control a users account...

The vulnerability of the Android application Mahavitaran, related to insufficient protection of registration data, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Android application “Mahavitaran” is related to insufficient protection of registration data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

Mahavitaran licensing issue vulnerability

Mahavitaran, an official application of Maharashtra State Electricity Distribution, India, is vulnerable to an authorization issue in version 7.50 and earlier, which stems from a software writing issue where usernames and passwords are stored in plaintext and can be read by a local attacker. A...

CVE-2020-27416

Mahavitaran android application 7.50 and prior are affected by account takeover due to improper OTP validation, allows remote attackers to control a users account...

CVE-2020-27416

Mahavitaran android application 7.50 and prior are affected by account takeover due to improper OTP validation, allows remote attackers to control a users account...

Input validation

Mahavitaran android application 7.50 and prior are affected by account takeover due to improper OTP validation, allows remote attackers to control a users account...

CVE-2020-27416

The CVE-2020-27416 entry describes a vulnerability in the Mahavitaran Android application (7.50 and earlier) where improper OTP validation enables account takeover and remote control of a user’s account. The issue is rooted in OTP handling/authentication flaws that allow an attacker to compromise...

CVE-2020-27416

Mahavitaran android application 7.50 and prior are affected by account takeover due to improper OTP validation, allows remote attackers to control a users account...

Maharashtra State Electricity Distribution Mahavitaran 代码问题漏洞

Maharashtra State Electricity Distribution Mahavitaran is an official application of Maharashtra State Electricity Distribution, India. A security vulnerability exists in the Mahavitaran android application version 7.50 and earlier, which stems from improper OTP authentication subject to account...

CVE-2020-27413

An issue was discovered in Mahavitaran android application 7.50 and below, allows local attackers to read cleartext username and password while the user is logged into the application...

CVE-2020-27413

An issue was discovered in Mahavitaran android application 7.50 and below, allows local attackers to read cleartext username and password while the user is logged into the application...

CVE-2020-27413

The CVE-2020-27413 issue affects Mahavitaran Android app (version 7.50 and earlier). The underlying problem is how usernames and passwords are stored, enabling a local attacker to read cleartext credentials while the user is logged in. Multiple connected records (Red Hat, CNVD, CNNVD, CVE diag) c...

Mahavitaran 授权问题漏洞

Maharashtra State Electricity Distribution Mahavitaran is an official application of Maharashtra State Electricity Distribution, India. A security vulnerability exists in the previous version of Mahavitara 8.20 machine, which stems from an OTP fixation vulnerability in the software due to the...

Mahavitaran安全漏洞

Mahavitaran, an official application of Maharashtra State Electricity Distribution, India, is vulnerable to an authorization issue in version 7.50 and earlier, which stems from a software writing issue where usernames and passwords are stored in plaintext and can be read by a local attacker. A...

CVE-2020-27414

Mahavitaran android application 7.50 and prior transmit sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header, MITM or browser history...

CVE-2020-27414

Mahavitaran android application 7.50 and prior transmit sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header, MITM or browser history...

Information disclosure

Mahavitaran android application 7.50 and prior transmit sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header, MITM or browser history...