Security Advisory

CVE-2024-50653

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-15 00:00:00

Last updated 2025-03-13 15:33:35

Assigner mitre

State PUBLISHED

Description

CRMEB <=5.4.0 is vulnerable to Incorrect Access Control. Users can bypass the front-end restriction of only being able to claim coupons once by capturing packets and sending a large number of data packets for coupon collection, achieving unlimited coupon collection.

← Browse all CVEs View on cve.org ↗