YONO SBI Banking & Lifestyle Unencrypted Communication Vulnerability Allowing Man-in-the-Middle Attacks
Vulnerability
A vulnerability exists in the YONO SBI: Banking & Lifestyle app, version 1.23.36, due to the use of unencrypted communications. This configuration allows for cleartext HTTP traffic, creating a risk of interception, data tampering, and man-in-the-middle attacks, where users could unknowingly interact with malicious servers.
Impact
Exploitation of this vulnerability could lead to interception and modification of sensitive data, including user credentials and financial transaction information, creating a high risk for users of the banking app.
Reproduction
To reproduce this vulnerability, decompile the YONO SBI APK version 1.23.36 using APKTool. Inspect the AndroidManifest.xml file to confirm the presence of 'android:usesCleartextTraffic="true"', which indicates that the app allows unencrypted network traffic. After verifying this setting, analyze the app's network requests with a proxy tool like Burp Suite or Wireshark. Look for unencrypted HTTP traffic, which would demonstrate the vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.