THREAT OPS › CVEs › CVE-2024-39891
CVE-2024-39891 — Twilio Authy Information Disclosure Vulnerability
Twilio Authy contains an information disclosure vulnerability in its API that allows an unauthenticated endpoint to accept a request containing a phone number and respond with information about whether the phone number was registered with Authy.
Vulnerability details
- Affected productsAuthy
- KEV remediation due2024-08-13