CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Twilio: >> Authy 2-Factor Authentication Security Vulnerabilities

CVE-2020-24655

A race condition in the Twilio Authy 2-Factor Authentication application before 24.3.7 for Android allows a user to potentially approve/deny an access request prior to unlocking the application with a PIN on older Android devices (effectively bypassing the PIN requirement).

CVSS Score

5.1

EPSS Score

0.001

Published

2020-09-10

Page 1

Vulnerabilities

Vulnerable Software

Twilio: >> Authy 2-Factor Authentication Security Vulnerabilities

Products

Pricing

Contact Us