Security Advisory
CVE-2025-56467
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
An issue was discovered in AXIS BANK LIMITED Axis Mobile App 9.9 that allows attackers to obtain sensitive information without a UPI PIN, such as account information, balances, transaction history, and unspecified other information. NOTE: the Suppliers perspective is that this is an intended feature and "does not reveal much sensitive information."