CVE-2025-61114

Published: Oct 30, 2025

Modified: Oct 30, 2025

PUBLISHED

Description

2nd Line Android App version v1.2.92 and before (package name com.mysecondline.app), developed by AutoBizLine, Inc., contains an improper access control vulnerability in its authentication mechanism. The server only validates the first character of the user_token, enabling attackers to brute force tokens and perform unauthorized queries on other user accounts. Successful exploitation could result in privacy breaches and unauthorized access to user data.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://kar1oz.notion.site/2nd-Line-2629a473ecb280739ecac2d316da666c

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-61114

Description

Affected Products

References