CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-28174

Mitake smart stock selection system contains a broken authentication vulnerability. By manipulating the parameters in the URL, remote attackers can gain the privileged permissions to access transaction record, and fraudulent trading without login.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.0%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 6.4

References

https://www.twcert.org.tw/tw/cp-132-4625-4ccc6-1.html
https://www.twcert.org.tw/tw/cp-132-4625-4ccc6-1.html

Products affected by CVE-2021-28174

Mitake » Smart Stock Selection » Version: N/A

cpe:2.3:a:mitake:smart_stock_selection:-
Mitake » Smart Stock Selection » Version: 2020-06-23

cpe:2.3:a:mitake:smart_stock_selection:2020-06-23

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-28174

Products

Pricing

Contact Us