CVE-2024-39891

⚠ KEVEPSS 17.1%

Twilio Authy Information Disclosure Vulnerability

Added to CISA KEV: 7/23/2024

Description

Twilio Authy contains an information disclosure vulnerability in its API that allows an unauthenticated endpoint to accept a request containing a phone number and respond with information about whether the phone number was registered with Authy.

Affected packages (0)

No package mapping in OSV.