Entreprise d'experts en Sécurité Informatique : Audits et conseils en cybersécurité
Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com


CVE-2020-27413

Description

An issue was discovered in Mahavitaran android application 7.50 and below, allows local attackers to read cleartext username and password while the user is logged into the application.

POC

Reference

- http://maharashtra.com

- https://cvewalkthrough.com/cve-2020-27413-mahavitaran-android-application-clear-text-password-storage/

Github

- https://github.com/ARPSyndicate/cvemon