Medium severity6.0NVD Advisory· Published Sep 29, 2025· Updated Apr 15, 2026
CVE-2025-57197
CVE-2025-57197
Description
In the Payeer Android application 2.5.0, an improper access control vulnerability exists in the authentication flow for the PIN change feature. A local attacker with root access to the device can dynamically instrument the app to bypass the current PIN verification check and directly modify the authentication PIN. This allows unauthorized users to change PIN without knowing the original/current PIN.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 2.5.0
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.