Security Advisory

CVE-2020-24655

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-10 01:32:44

Last updated 2024-08-04 15:19:08

Assigner mitre

State PUBLISHED

Description

A race condition in the Twilio Authy 2-Factor Authentication application before 24.3.7 for Android allows a user to potentially approve/deny an access request prior to unlocking the application with a PIN on older Android devices (effectively bypassing the PIN requirement).

← Browse all CVEs View on cve.org ↗