PT-2026-22715 · Unknown · Command Centre Mobile Client

Published

2026-03-03

Updated

2026-03-03

CVE-2025-47147

CVSS v3.1

5.7

Medium

Vector

AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Command Centre Mobile Client versions prior to 9.40.123

Description A flaw exists in the Command Centre Mobile Client on Android and iOS that involves the cleartext storage of sensitive information. An attacker gaining access to a logged-in Operator’s mobile device could potentially extract the session token and exploit access for a limited time.

Recommendations Update Command Centre Mobile Client to version 9.40.123 or later.

Fix

Cleartext Storage of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-312

Related Identifiers

CVE-2025-47147

Affected Products

Command Centre Mobile Client

PT-2026-22715 · Unknown · Command Centre Mobile Client

CVE-2025-47147

Weakness Enumeration

Related Identifiers

Affected Products

References · 7