CVE-2025-5154

Name of the Vulnerable Software and Affected Versions PhonePe App version 25.03.21.0

Description A problematic issue was found in the PhonePe App, affecting an unknown function of the SQLite Database component. The issue leads to cleartext storage in a file or on disk, requiring local access for exploitation. The exploit has been publicly disclosed.

Recommendations For PhonePe App version 25.03.21.0, consider updating to a newer version that addresses the cleartext storage issue, as local access can be used to exploit this problem. At the moment, there is no information about a newer version that contains a fix for this vulnerability.