CVE-2025-46018

EPSS 0.05% · P16 Updated Aug 02, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-46018

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

CSC Pay Mobile App 2.19.4 (fixed in version 2.20.0) contains a vulnerability allowing users to bypass payment authorization by disabling Bluetooth at a specific point during a transaction. This could result in unauthorized use of laundry services and potential financial loss.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Opay Mobile application 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Opay Mobile application是Opay公司的一个轻量级应用程序。用于管理所有银行或支付需求。 Opay Mobile application 2.19.4版本存在安全漏洞，该漏洞源于允许用户在交易特定时刻通过禁用蓝牙绕过支付授权，可能导致未经授权使用洗衣服务和财务损失。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2025-46018

#	POC Description	Source Link	Shenlong Link
1	Disclosure of CVE-2025-46018: A Bluetooth-based payment bypass vulnerability in CSC Pay Mobile App v2.19.4"	https://github.com/niranjangaire1995/CVE-2025-46018-CSC-Pay-Mobile-App-Payment-Authentication-Bypass	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2025-46018

请登录查看更多情报信息。

Same Patch Batch · n/a · 2025-08-01 · 19 CVEs total

CVE-2024-13978	2.5 LOW	LibTIFF fax2ps tiff2pdf.c t2p_read_tiff_init null pointer dereference
CVE-2025-51501		Microweber CMS 安全漏洞
CVE-2025-45150		LangChain-ChatGLM-Webui 安全漏洞
CVE-2025-45778		Language Sloth Web Application 安全漏洞
CVE-2025-54564		ChargePoint Home Flex 安全漏洞
CVE-2025-50869		Institute-of-Current-Students 安全漏洞
CVE-2025-50870		Institute-of-Current-Students 安全漏洞
CVE-2025-50868		CloudClassroom-PHP-Project 安全漏洞
CVE-2025-51502		Microweber CMS 安全漏洞
CVE-2025-51504		Microweber CMS 安全漏洞
CVE-2025-52361		AK-Nord USB-Server-LXL Firmware 安全漏洞
CVE-2025-52390		Saurus CMS Community Edition 安全漏洞
CVE-2025-50472		SWIFT 安全漏洞
CVE-2025-50460		SWIFT 安全漏洞
CVE-2019-19144		Quantum DXi6702 安全漏洞
CVE-2025-52327		Code-Projects Restaurant Order System 安全漏洞
CVE-2025-44139		Emlog Pro 安全漏洞
CVE-2025-45767		jose 安全漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2025-46018

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2025-46018

I. Basic Information for CVE-2025-46018

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2025-46018

III. Intelligence Information for CVE-2025-46018

Same Patch Batch · n/a · 2025-08-01 · 19 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2025-46018

Leave a comment