CVE-2025-61113

TalkTalk Android app v3.3.6 has improper access control across multiple API endpoints. The issue allows parameter tampering to extract sensitive user data (device identifiers, birthdays) and private group information (including join credentials). Impact is privacy breach and unauthorized access t...

CVE-2017-5672

Kony Enterprise Mobile Management EMM before 4.2.5.2 has the vulnerability of disclosing the private key in clear-text when changing the parameters of the request...