exploitDog

GHSA-qfvx-qh4h-983h

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

B.A.S C2Box before 4.0.0 (r19171) relies on client-side validation, which allows remote attackers to "corrupt the business logic" via a negative value in an overdraft.

B.A.S C2Box before 4.0.0 (r19171) relies on client-side validation, which allows remote attackers to "corrupt the business logic" via a negative value in an overdraft.

Ссылки

EPSS

Процентиль: 47%

0.0024

Низкий

7.5 High

CVSS3

CVE ID

Связанные уязвимости

CVE-2015-4626

CVSS3: 7.5

nvd

около 9 лет назад

B.A.S C2Box before 4.0.0 (r19171) relies on client-side validation, which allows remote attackers to "corrupt the business logic" via a negative value in an overdraft.

EPSS

Процентиль: 47%

0.0024

Низкий

7.5 High

CVSS3

CVE ID