CVE Details
Basic Information
| Title | Bharti Airtel Thanks App files cleartext storage in a file or on disk |
|---|---|
| Type | cve |
| Published | 2025-06-27T01:31:06.283Z |
| Last Seen |
Product Information
| Vendor | Bharti Airtel |
|---|---|
| Product | Thanks App |
| Version | 4.105.4 |
CVSS Information
| Base Score | 2.4 (LOW) |
|---|---|
| Attack Vector | CVSS:4.0/AV:P/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A vulnerability in Bharti Airtel Thanks App 4.105.4 allows cleartext storage of sensitive data, which could be exploited physically. The vendor did not respond to the disclosure. |
|---|---|
| AI Severity | Low |
| Vendor | Bharti Airtel |
| Product | Thanks App |
| Affected Version | 4.105.4 |
Affected Products
- Bharti Airtel Thanks App 4.105.4
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-313, CWE-312 |
| Bulletin Family |
References
Description
A vulnerability classified as problematic has been found in Bharti Airtel Thanks App 4.105.4 on Android. Affected is an unknown function of the file /Android/data/com.myairtelapp/files/. The manipulation leads to cleartext storage in a file or on disk. It is possible to launch the attack on the physical device. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.