Filtered by vendor Apexsoftcell
Subscriptions
Filtered by product Ld Dp Back Office
Subscriptions
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2024-47085 | 1 Apexsoftcell | 1 Ld Dp Back Office | 2024-09-19 | N/A |
This vulnerability exists in Apex Softcell LD DP Back Office due to improper validation of certain parameters “cCdslClicentcode” and “cLdClientCode” in the API endpoint. An authenticated remote attacker could exploit this vulnerability by manipulating parameters in the API request body leading to exposure of sensitive information belonging to other users. | ||||
CVE-2024-47086 | 1 Apexsoftcell | 1 Ld Dp Back Office | 2024-09-19 | N/A |
This vulnerability exists in Apex Softcell LD DP Back Office due to improper implementation of OTP validation mechanism in certain API endpoints. An authenticated remote attacker could exploit this vulnerability by providing arbitrary OTP value for authentication and subsequently changing its API response. Successful exploitation of this vulnerability could allow the attacker to bypass OTP verification for other user accounts. |
Page 1 of 1.