PT-2026-22715 · Unknown · Command Centre Mobile Client

Publicado

2026-03-03

Atualizado

2026-03-03

CVE-2025-47147

CVSS v3.1

5.7

Média

Vetor

AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Command Centre Mobile Client versions prior to 9.40.123

Description A flaw exists in the Command Centre Mobile Client on Android and iOS that involves the cleartext storage of sensitive information. An attacker gaining access to a logged-in Operator’s mobile device could potentially extract the session token and exploit access for a limited time.

Recommendations Update Command Centre Mobile Client to version 9.40.123 or later.

Correção

Cleartext Storage of Sensitive Information

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-312

Identificadores relacionados

CVE-2025-47147

Produtos afetados

Command Centre Mobile Client

PT-2026-22715 · Unknown · Command Centre Mobile Client

CVE-2025-47147

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7