Описание
A vulnerability was found in code-projects ATM Banking 1.0. It has been classified as critical. Affected is the function moneyDeposit/moneyWithdraw. The manipulation leads to business logic errors. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.
Ссылки
- Product
- ExploitMitigationThird Party Advisory
- Permissions Required
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- ExploitMitigationThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:fabian:atm_banking:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 9%
0.00032
Низкий
4.4 Medium
CVSS3
5.5 Medium
CVSS3
3.2 Low
CVSS2
Дефекты
CWE-840
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 4.4
github
10 месяцев назад
A vulnerability was found in code-projects ATM Banking 1.0. It has been classified as critical. Affected is the function moneyDeposit/moneyWithdraw. The manipulation leads to business logic errors. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 9%
0.00032
Низкий
4.4 Medium
CVSS3
5.5 Medium
CVSS3
3.2 Low
CVSS2
Дефекты
CWE-840
NVD-CWE-noinfo