Vulnerability-References

2025-05-26

Security Alert from Mobatime AG / SA regarding Mobile Application and MTAPI, CVE-2025-2407

Missing Authentication and Authorization in Web-API in Mobatime AMX MTAPI v6 on IIS allows adversaries to unrestricted access via the network

Solution: Install update Version 1.5 MTAPI. All data traffic is then AES256 bit encrypted. To install the update please call our support or visit www.mobatime.ch