Vulnerabilities > Cdsoft

DATE	CVE	VULNERABILITY TITLE	RISK
2022-05-13	CVE-2022-27247	Authorization Bypass Through User-Controlled Key vulnerability in Cdsoft Winhotel.Mx 2021 onlinetolls in cdSoft Onlinetools-Smart Winhotel.MX 2021 allows an attacker to download sensitive information about any customer (e.g., data of birth, full address, mail information, and phone number) via GastKont Insecure Direct Object Reference. network low complexity cdsoft CWE-639	5.0
2014-09-09	CVE-2014-5737	Cryptographic Issues vulnerability in Cdsoft 0.2 The CDsoft (aka com.wCDSOFT) application 0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. cdsoft CWE-310	5.4

Vulnerabilities > Cdsoft {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Cdsoft"}]}