Unrated severityNVD Advisory· Published Dec 10, 2025· Updated Dec 11, 2025
CVE-2025-65827
CVE-2025-65827
Description
The mobile application is configured to allow clear text traffic to all domains and communicates with an API server over HTTP. As a result, an adversary located "upstream" can intercept the traffic, inspect its contents, and modify the requests in transit. TThis may result in a total compromise of the user's account if the attacker intercepts a request with active authentication tokens or cracks the MD5 hash sent on login.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- The mobile application/The mobile applicationdescription
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.