Remote Account Takeover Vulnerability in Maharashtra State Electricity Board Mahavitara Android Application 8.20 and Prior
CVE-2021-41716 · CRITICAL Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Maharashtra State Electricity Board Mahavitara Android Application 8.20 and prior is vulnerable to remote account takeover due to OTP fixation vulnerability in password rest function
Learn more about our Cis Benchmark Audit For Google Android.