CVE-2025-52580

July 22, 2025 invoker category_cve

CVE Details

Basic Information

Title CVE-2025-52580
Type cve
Published 2025-07-22T04:49:33.459Z
Modified 2025-07-22T04:49:33.459Z

Product Information

Vendor Gift Pad Co.,Ltd.
Product “region PAY” App for Android
Version prior to 1.5.28

CVSS Information

Base Score 2.4 (LOW)
Attack Vector CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Products

  • Gift Pad Co.,Ltd. “region PAY” App for Android prior to 1.5.28

Additional Information

CWE List CWE-532
Source jpcert

Description

Insertion of sensitive information into log file issue exists in “region PAY” App for Android prior to 1.5.28. If exploited, sensitive user information may be exposed to an attacker who has access to the application logs.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.