Sensitive Information Exposure in SBIbuddy Android Application (Versions 1.41 and 1.42)

Sensitive Information Exposure in SBIbuddy Android Application (Versions 1.41 and 1.42)

CVE-2018-17404 · LOW Severity

AV:N/AC:H/AU:N/C:P/I:N/A:N

The SBIbuddy (aka com.sbi.erupee) application 1.41 and 1.42 for Android might allow an attacker to sniff private information such as mobile number, PAN number (from a government-issued ID), and date of birth.

Learn more about our Cis Benchmark Audit For Google Android.