Vulnerabilities > SBI
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-09-23 | CVE-2018-17404 | Information Exposure vulnerability in SBI Buddy 1.41/1.42 The SBIbuddy (aka com.sbi.erupee) application 1.41 and 1.42 for Android might allow an attacker to sniff private information such as mobile number, PAN number (from a government-issued ID), and date of birth. | 2.6 |
2018-09-16 | CVE-2018-17108 | Unspecified vulnerability in SBI Buddy 1.41/1.42 The SBIbuddy (aka com.sbi.erupee) application 1.41 and 1.42 for Android might allow attackers to perform Account Takeover attacks by intercepting a security-question response during the initial configuration of the application. network sbi | 4.3 |
2014-09-18 | CVE-2014-5954 | Cryptographic Issues vulnerability in SBI State Bank Anywhere 2.0.1 The State Bank Anywhere (aka com.sbi.SBIFreedomPlus) application 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | 5.4 |