Unrated severityNVD Advisory· Published Sep 3, 2024· Updated Sep 4, 2024
Unauthorized Modification Vulnerability
CVE-2024-45587
Description
This vulnerability exists in Symphony XTS Web Trading platform version 2.0.0.1_P160 due to improper access controls on APIs in the Transaction module of vulnerable application. An authenticated remote attacker could exploit this vulnerability by manipulating parameters through HTTP request which could lead to compromise of other user accounts.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =2.0.0.1_P160
- Range: 2.0.0.1_P160
Patches
Vulnerability mechanics
References
1- www.cert-in.org.in/s2cMainServletmitrethird-party-advisory
News mentions
0No linked articles in our index yet.