Unrated severityNVD Advisory· Published Mar 18, 2022· Updated Sep 16, 2024

Syltek Insufficient Verification of Data Authenticity

CVE-2021-4031

Description

Syltek application before its 10.22.00 version, does not correctly check that a product ID has a valid payment associated to it. This could allow an attacker to forge a request and bypass the payment system by marking items as payed without any verification.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Syltek/Syltekllm-create2 versions
<10.22.00+ 1 more
- (no CPE)range: <10.22.00
- (no CPE)range: 10.22.00

Patches

Vulnerability mechanics

References

www.incibe-cert.es/en/early-warning/security-advisories/syltek-insufficient-verification-data-authenticitymitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000