PT-2025-7220 · Unknown · Roboform Password Manager
Johan Francsics
·
Publicado
2025-02-17
·
Atualizado
2025-02-17
·
CVE-2025-26700
CVSS v3.1
5.2
Média
| Vetor | AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N |
Name of the Vulnerable Software and Affected Versions:
RoboForm Password Manager versions prior to 9.7.4
Description:
An authentication bypass issue exists, which may allow an attacker with access to a device where the application is installed to bypass the lock screen and obtain sensitive information. This issue affects the RoboForm Password Manager App for Android.
Recommendations:
For versions prior to 9.7.4, update to version 9.7.4 or later to resolve the issue. As a temporary workaround, consider disabling the lock screen feature in the RoboForm Password Manager App until a patch is applied. Restrict access to sensitive information stored in the app to minimize the risk of exploitation.
Correção
Authentication Bypass Using an Alternate Path or Channel
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Roboform Password Manager