YONO SBI app security vulnerability.

A serious security flaw has been identified in the YONO SBI: Banking & Lifestyle app, potentially putting millions of users at risk of man-in-the-middle (MITM) attacks. This vulnerability, labeled CVE-2025-45080, affects version 1.23.36 of the app, developed by the State Bank of India (SBI).

YONO SBI app security vulnerabilityYONO SBI app security vulnerability

Nature of the Vulnerability

Security researcher Ishwar Kumar discovered that the app allows cleartext network traffic due to the android:usesCleartextTraffic=”true” setting in its manifest file. This configuration permits unencrypted data transmission over HTTP instead of the secure HTTPS protocol, creating a significant security gap.

Potential Risks

The implications of this vulnerability are severe:

  • Eavesdropping: Attackers can intercept unencrypted data, including user credentials and transaction details.
  • Tampering: Malicious actors can modify data packets, altering transaction details or injecting harmful content.
  • MITM Attacks: Users may unknowingly connect to rogue servers, allowing attackers to impersonate the bank and steal sensitive information.
YONO SBI app security vulnerabilityYONO SBI app security vulnerability

The vulnerability has been rated as critical due to its ease of exploitation and potential impact on user confidentiality and data integrity.

As of July 2, 2025, SBI has not issued any public statement regarding a patch or mitigation steps.

Recommendations for Users

Until a fix is available, users are advised to:

  • Avoid using public Wi-Fi when accessing the YONO SBI app.
  • Monitor accounts for unusual activity.
  • Update the app immediately once a security patch is released.