Incorrect access control in the KSRTC AWATAR app of Karnataka State Road Transport Corporation v1.3.0 allows to view sensitive information such as usernames and passwords.
https://www.tenable.com/cve/CVE-2025-25381
https://github.com/edwin-0990/CVE_ID/blob/main/CVE-2025-25381/README.md