Vulnerabilities (CVE)

Filtered by vendor Sap Subscribe
Filtered by product Authenticator
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-27895 1 Sap 1 Authenticator 2024-11-21 N/A 6.1 MEDIUM
SAP Authenticator for Android - version 1.3.0, allows the screen to be captured, if an authorized attacker installs a malicious app on the mobile device. The attacker could extract the currently views of the OTP and the secret OTP alphanumeric token during the token setup. On successful exploitation, an attacker can read some sensitive information but cannot modify and delete the data.
CVE-2022-35290 1 Sap 1 Authenticator 2024-11-21 N/A 7.5 HIGH
Under certain conditions SAP Authenticator for Android allows an attacker to access information which would otherwise be restricted.