CVE-2024-45586 | Symphony Fintech XTS Web Trader/XTS Mobile Trader 2.0.0.1_P160 Authentication Module authorization (CIVN-2024-0281)

Posted by Angelo Barbosa | Sep 3, 2024 | CVE

A vulnerability was found in Symphony Fintech XTS Web Trader and XTS Mobile Trader 2.0.0.1_P160. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Authentication Module. The manipulation leads to incorrect authorization.

This vulnerability is known as CVE-2024-45586. The attack can be launched remotely. There is no exploit available.

CVE-2024-45586 | Symphony Fintech XTS Web Trader/XTS Mobile Trader 2.0.0.1_P160 Authentication Module authorization (CIVN-2024-0281)

Related Posts

CVE-2023-49798 | OpenZeppelin openzeppelin-contracts 4.9.4 Subcall control flow (GHSA-699g-q6qh-q4v8)

CVE-2024-3606 | ProfileGrid Plugin up to 5.8.3 on WordPress authorization

CVE-2024-37300 | jupyterhub oauthenticator up to 16.3.0 authorization (GHSA-gprj-3p75-f996)

CVE-2024-7827 | Shopping Cart & eCommerce Store Plugin up to 5.7.2 on WordPress model_number sql injection