Search criteria
2 vulnerabilities by Two App Studio
CVE-2025-41459 (GCVE-0-2025-41459)
Vulnerability from cvelistv5 – Published: 2025-07-21 11:01 – Updated: 2025-08-27 06:34
VLAI?
Title
Insecure authentication due to missing bruteforce protection and runtime manipulation in Two App Studio Journey 5.5.6 for iOS
Summary
Insufficient protection against brute-force and runtime manipulation in the local authentication component in Two App Studio Journey 5.5.6 on iOS allows local attackers to bypass biometric and PIN-based access control via repeated PIN attempts or dynamic code injection.
Severity ?
7.8 (High)
CWE
- CWE-287 - Improper Authentication
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Two App Studio | Journey |
Affected:
0 , ≤ 5.5.9
(semver)
|
Credits
Hannes Allmann (cirosec GmbH) <hannes.allmann@cirosec.de>
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-41459",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-07-21T12:24:57.637907Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-07-21T12:25:07.926Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"platforms": [
"iOS"
],
"product": "Journey",
"vendor": "Two App Studio",
"versions": [
{
"lessThanOrEqual": "5.5.9",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"configurations": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "The runtime manipulation bypass of the local biometric bypass requires a jailbroken phone."
}
],
"value": "The runtime manipulation bypass of the local biometric bypass requires a jailbroken phone."
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Hannes Allmann (cirosec GmbH) \u003channes.allmann@cirosec.de\u003e"
}
],
"datePublic": "2020-07-10T10:00:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Insufficient protection against brute-force and runtime manipulation in the local authentication component in Two App Studio Journey 5.5.6 on iOS allows local attackers to bypass biometric and PIN-based access control via repeated PIN attempts or dynamic code injection."
}
],
"value": "Insufficient protection against brute-force and runtime manipulation in the local authentication component in Two App Studio Journey 5.5.6 on iOS allows local attackers to bypass biometric and PIN-based access control via repeated PIN attempts or dynamic code injection."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-287",
"description": "CWE-287 Improper Authentication",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-08-27T06:34:27.134Z",
"orgId": "a341c0d1-ebf7-493f-a84e-38cf86618674",
"shortName": "cirosec"
},
"references": [
{
"tags": [
"third-party-advisory"
],
"url": "https://www.cirosec.de/sa/sa-2025-006"
}
],
"source": {
"advisory": "SA-2025-006",
"discovery": "USER"
},
"timeline": [
{
"lang": "en",
"time": "2025-03-12T15:07:00.000Z",
"value": "Vendor was contacted and informed about the vulnerability via email."
},
{
"lang": "en",
"time": "2025-03-25T08:05:00.000Z",
"value": "Second attempt was made to contact vendor via email."
},
{
"lang": "en",
"time": "2025-06-25T10:46:00.000Z",
"value": "Third attempt was made to contact vendor via email."
}
],
"title": "Insecure authentication due to missing bruteforce protection and runtime manipulation in Two App Studio Journey 5.5.6 for iOS",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "a341c0d1-ebf7-493f-a84e-38cf86618674",
"assignerShortName": "cirosec",
"cveId": "CVE-2025-41459",
"datePublished": "2025-07-21T11:01:29.417Z",
"dateReserved": "2025-04-16T10:48:40.810Z",
"dateUpdated": "2025-08-27T06:34:27.134Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2025-41458 (GCVE-0-2025-41458)
Vulnerability from cvelistv5 – Published: 2025-07-21 11:01 – Updated: 2025-07-21 12:28
VLAI?
Title
Insecure data storage vulnerability in Two App Studio Journey v5.5.9 for iOS
Summary
Unencrypted storage in the database in Two App Studio Journey v5.5.9 for iOS allows local attackers to extract sensitive data via direct access to the app’s filesystem.
Severity ?
5.5 (Medium)
CWE
- CWE-312 - Cleartext Storage of Sensitive Information
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Two App Studio | Journey |
Affected:
0 , ≤ 5.5.9
(semver)
|
Credits
Hannes Allmann (cirosec GmbH) <hannes.allmann@cirosec.de>
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-41458",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-07-21T12:28:16.325042Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-07-21T12:28:22.467Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"platforms": [
"iOS"
],
"product": "Journey",
"vendor": "Two App Studio",
"versions": [
{
"lessThanOrEqual": "5.5.9",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"configurations": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "This vulnerability assumes a jailbroken device.\n\n\u003cbr\u003e"
}
],
"value": "This vulnerability assumes a jailbroken device."
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Hannes Allmann (cirosec GmbH) \u003channes.allmann@cirosec.de\u003e"
}
],
"datePublic": "2020-07-10T10:00:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Unencrypted storage in the database in Two App Studio Journey v5.5.9 for iOS allows local attackers to extract sensitive data via direct access to the app\u2019s filesystem.\u0026nbsp;"
}
],
"value": "Unencrypted storage in the database in Two App Studio Journey v5.5.9 for iOS allows local attackers to extract sensitive data via direct access to the app\u2019s filesystem."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-312",
"description": "CWE-312 Cleartext Storage of Sensitive Information",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-07-21T11:01:13.982Z",
"orgId": "a341c0d1-ebf7-493f-a84e-38cf86618674",
"shortName": "cirosec"
},
"references": [
{
"tags": [
"third-party-advisory"
],
"url": "https://www.cirosec.de/sa/sa-2025-005"
}
],
"source": {
"advisory": "SA-2025-005",
"discovery": "USER"
},
"timeline": [
{
"lang": "en",
"time": "2025-03-12T15:07:00.000Z",
"value": "Vendor was contacted and informed about the vulnerability via email."
},
{
"lang": "en",
"time": "2025-03-25T08:05:00.000Z",
"value": "Second attempt was made to contact vendor via email."
},
{
"lang": "en",
"time": "2025-06-25T10:46:00.000Z",
"value": "Third attempt was made to contact vendor via email."
}
],
"title": "Insecure data storage vulnerability in Two App Studio Journey v5.5.9 for iOS",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "a341c0d1-ebf7-493f-a84e-38cf86618674",
"assignerShortName": "cirosec",
"cveId": "CVE-2025-41458",
"datePublished": "2025-07-21T11:01:13.982Z",
"dateReserved": "2025-04-16T10:48:40.810Z",
"dateUpdated": "2025-07-21T12:28:22.467Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}