Skip to main content

Xts Mobile Trader

3 CVEs product

Monthly

CVE-2024-45588 CRITICAL Act Now

This vulnerability exists in Symphony XTS Web Trading platform version 2.0.0.1_P160 due to improper access controls on APIs in the Preference module of the application. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Xts Mobile Trader Xts Web Trader
NVD
CVSS 4.0
9.1
EPSS
0.4%
CVE-2024-45587 CRITICAL Act Now

This vulnerability exists in Symphony XTS Web Trading platform version 2.0.0.1_P160 due to improper access controls on APIs in the Transaction module of vulnerable application. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Xts Mobile Trader Xts Web Trader
NVD
CVSS 4.0
9.1
EPSS
0.4%
CVE-2024-45586 CRITICAL Act Now

This vulnerability exists due to improper access controls on APIs in the Authentication module of Symphony XTS Web Trading and Mobile Trading platforms (version 2.0.0.1_P160). Rated critical severity (CVSS 9.2), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Xts Mobile Trader Xts Web Trader
NVD
CVSS 4.0
9.2
EPSS
0.4%
EPSS 0% CVSS 9.1
CRITICAL Act Now

This vulnerability exists in Symphony XTS Web Trading platform version 2.0.0.1_P160 due to improper access controls on APIs in the Preference module of the application. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Xts Mobile Trader Xts Web Trader
NVD
EPSS 0% CVSS 9.1
CRITICAL Act Now

This vulnerability exists in Symphony XTS Web Trading platform version 2.0.0.1_P160 due to improper access controls on APIs in the Transaction module of vulnerable application. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Xts Mobile Trader Xts Web Trader
NVD
EPSS 0% CVSS 9.2
CRITICAL Act Now

This vulnerability exists due to improper access controls on APIs in the Authentication module of Symphony XTS Web Trading and Mobile Trading platforms (version 2.0.0.1_P160). Rated critical severity (CVSS 9.2), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Xts Mobile Trader Xts Web Trader
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy