CVE-2025-5719 MEDIUM

CVE-2025-5719

Vendor Vivo
Product Wallet
Weakness CWE-306 · Missing auth
Published June 6, 2025
Last update June 9, 2025

CVSS base score

5.1/10
Attack vector Physical
Attack complexity Low
Privileges required None
User interaction
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:L/SI:N/SA:N

What the vulnerability does

01Description

The wallet has an authentication bypass vulnerability that allows access to specific pages.

Key dates

02Disclosure timeline

June 6, 2025 CVE published
June 9, 2025 Record updated