VYPR

Authenticator for Android

by SAP

CVEs (3)

  • CVE-2023-27895Mar 14, 2023
    risk 0.00cvss epss 0.00

    SAP Authenticator for Android - version 1.3.0, allows the screen to be captured, if an authorized attacker installs a malicious app on the mobile device. The attacker could extract the currently views of the OTP and the secret OTP alphanumeric token during the token setup. On…

  • CVE-2022-35290Aug 9, 2022
    risk 0.00cvss epss 0.01

    Under certain conditions SAP Authenticator for Android allows an attacker to access information which would otherwise be restricted.

  • CVE-2021-25266Apr 27, 2022
    risk 0.00cvss epss 0.00

    An insecure data storage vulnerability allows a physical attacker with root privileges to retrieve TOTP secret keys from unlocked phones in Sophos Authenticator for Android version 3.4 and older, and Intercept X for Mobile (Android) before version 9.7.3495.