9 matches found
CVE-2024-36438
eLinkSmart Hidden Smart Cabinet Lock 2024-05-22 has Incorrect Access Control and fails to perform an authorization check which can lead to card duplication and other attacks...
CVE-2024-58248
nopCommerce through 4.90.1 does not offer locking for order placement. Thus there is a race condition with duplicate redeeming of gift cards...
CVE-2024-58248
CVE-2024-58248 affects nopCommerce prior to 4.80.0 (public notes reference up to 4.90.1) where order placement lacks locking, enabling a race condition that can allow duplicate gift card redemption. Public advisories (NVD/Red Hat/OSV/Snyk) confirm the issue and cite a remediation to upgrade to ve...
CVE-2024-36438
eLinkSmart Hidden Smart Cabinet Lock 2024-05-22 has Incorrect Access Control and fails to perform an authorization check which can lead to card duplication and other attacks...
CVE-2024-36438
eLinkSmart Hidden Smart Cabinet Lock 2024-05-22 has Incorrect Access Control and fails to perform an authorization check which can lead to card duplication and other attacks...
CVE-2024-36438
eLinkSmart Hidden Smart Cabinet Lock 2024-05-22 has Incorrect Access Control and fails to perform an authorization check which can lead to card duplication and other attacks...
PT-2024-26997 · Elinksmart · Elinksmart Hidden Smart Cabinet Lock
Name of the Vulnerable Software and Affected Versions: eLinkSmart Hidden Smart Cabinet Lock affected versions not specified Description: The issue is related to incorrect access control, where the system fails to perform an authorization check. This can lead to card duplication and other attacks...
CVE-2024-36438
CVE-2024-36438 affects the eLinkSmart Hidden Smart Cabinet Lock. The connected sources confirm an incorrect access control/authorization check vulnerability in the device, which can enable card duplication and related attacks. No concrete patch/version or remediation is provided in the documents;...
Researchers Bypass Chip and Pin Protections at Black Hat
LAS VEGAS – Credit card companies for the most part have moved away from “swipe and signature” credit cards to chip and pin cards by this point; the technology known as EMV Europay, MasterCard, and Visa which is supposed to provide consumers with an added layer of security is beginning to see som...