CVE-2025-5154 – PhonePe SQLite Database Cleartext Storage Vulnerability

CVE ID : CVE-2025-5154

Published : May 25, 2025, 7:15 p.m. | 2 hours, 13 minutes ago

Description : A vulnerability, which was classified as problematic, was found in PhonePe App 25.03.21.0 on Android. Affected is an unknown function of the file /data/data/com.phonepe.app/databases/ of the component SQLite Database. The manipulation leads to cleartext storage in a file or on disk. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.

Severity: 2.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…