13 matches found
EUVD-2017-18734
Malware in sbrugna...
EUVD-2017-18736
Malware in sbrugna...
Unspecified Vulnerability in BHIM application for Android
BHIM application for Android is an Android platform based mobile payment application by National Payments India. A security vulnerability exists in National Payments Corporation in version 1.3 of the India BHIM application for Android-based platform, which stems from the program's use of a...
CVE-2017-9819
The National Payments Corporation of India BHIM application 1.3 for Android does not properly restrict use of the OTP feature, which makes it easier for attackers to bypass authentication...
Authentication flaw
The National Payments Corporation of India BHIM application 1.3 for Android uses a custom keypad for which the input element is available to the Accessibility service, which makes it easier for attackers to bypass authentication...
Authentication flaw
The National Payments Corporation of India BHIM application 1.3 for Android does not properly restrict use of the OTP feature, which makes it easier for attackers to bypass authentication...
CVE-2017-9819
The National Payments Corporation of India BHIM application 1.3 for Android does not properly restrict use of the OTP feature, which makes it easier for attackers to bypass authentication...
CVE-2017-9818
The National Payments Corporation of India BHIM application 1.3 for Android relies on a four-digit passcode, which makes it easier for attackers to obtain access...
CVE-2017-9820
The National Payments Corporation of India BHIM application 1.3 for Android uses a custom keypad for which the input element is available to the Accessibility service, which makes it easier for attackers to bypass authentication...
CVE-2017-9819
Affected software: National Payments Corporation of India BHIM Android app, version 1.3. Vulnerability: OTP feature is not properly restricted, enabling authentication bypass. Root cause (as stated): improper restriction of OTP functionality. Impact: attackers could bypass authentication (per the...
CVE-2017-9818
CVE-2017-9818 affects the National Payments Corporation of India BHIM Android app (version 1.3). The issue is that the app relies on a four-digit passcode, which the available documents describe as enabling easier access for attackers. The connected documents confirm the component and root cause ...
CVE-2017-9819
The National Payments Corporation of India BHIM application 1.3 for Android does not properly restrict use of the OTP feature, which makes it easier for attackers to bypass authentication...
CVE-2017-9820
The CVE-2017-9820 entry concerns the National Payments Corporation of India BHIM Android app (v1.3). A vulnerability exists where the app’s custom keypad exposes the input element to the Accessibility service, enabling bypass of authentication. This is described with a CVSS-3.0 base score of 9.8 ...