CVE-2025-5154 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability, which was classified as problematic, was found in PhonePe App 25.03.21.0 on Android. Affected is an unknown function of the file /data/data/com…
Medium CVSS: 4.6

CVE-2025-5154

A vulnerability, which was classified as problematic, was found in PhonePe App 25.03.21.0 on Android. Affected is an unknown function of the file /data/data/com.phonepe.app/databases/ of the component SQLite Database. The manipulation leads to cleartext storage in a file or on disk. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.
Vendor
Phonepe
Product
Phonepe
CWE
CWE-312
Yayın Tarihi
2025-05-25 19:15:19
Güncelleme
2025-06-03 13:53:41
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-312 Phonepe MEDIUM Phonepe 2025

Referanslar

https://drive.google.com/drive/folders/1Xj9y2w3E98IZu8PUeGGI0nQPNsvVm87I?usp=sharing https://github.com/honestcorrupt/-Insecure-Local-Storage-of-Sensitive-User-Data-in-PhonePe-Android-App-Unpatched- https://vuldb.com/?ctiid.310242 https://vuldb.com/?id.310242 https://vuldb.com/?submit.576245 https://github.com/honestcorrupt/-Insecure-Local-Storage-of-Sensitive-User-Data-in-PhonePe-Android-App-Unpatched-