CVE-2025-46018 Information
Aug 02, 2025
cve
Description
CSC Pay Mobile App 2.19.4 (fixed in version 2.20.0) contains a vulnerability allowing users to bypass payment authorization by disabling Bluetooth at a specific point during a transaction. This could result in unauthorized use of laundry services and potential financial loss.
Reference
https://github.com/niranjangaire1995/CVE-2025-46018-CSC-Pay-Mobile-App-Payment-Authentication-Bypass https://www.cscsw.com/disclosure-process/
Related CNNVD
CNNVD-202508-048 (Published: 2025-08-01)
Share on: