Remote Account Takeover Vulnerability in Maharashtra State Electricity Board Mahavitara Android Application 8.20 and Prior

Remote Account Takeover Vulnerability in Maharashtra State Electricity Board Mahavitara Android Application 8.20 and Prior

CVE-2021-41716 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Maharashtra State Electricity Board Mahavitara Android Application 8.20 and prior is vulnerable to remote account takeover due to OTP fixation vulnerability in password rest function

Learn more about our Cis Benchmark Audit For Google Android.