Security Advisory

CVE-2021-4031

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-18 17:59:06

Last updated 2024-09-16 20:11:23

Assigner INCIBE

State PUBLISHED

Description

Syltek application before its 10.22.00 version, does not correctly check that a product ID has a valid payment associated to it. This could allow an attacker to forge a request and bypass the payment system by marking items as payed without any verification.

← Browse all CVEs View on cve.org ↗