Davimo

**Name of the Vulnerable Software and Affected Versions** Shenzhen HCC Technology MPOS M6 PLUS version 1V.31-N **Description** A security issue exists in the Bluetooth component of Shenzhen HCC Technology MPOS M6 PLUS 1V.31-N, resulting in missing authentication. Exploitation requires local network access and is considered highly complex and difficult. The vendor was contacted but did not respond. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Shenzhen HCC Technology MPOS M6 PLUS version 1V.31-N **Description** An issue exists in the Bluetooth Handler component where the Bluetooth protocol lacks cryptographic authentication mechanisms. The system relies on a trivial single-byte XOR checksum for integrity checks, which can be recalculated by an attacker. This allows a remote attacker on the local network to perform a capture-replay manipulation to bypass authentication and inject arbitrary transaction commands without the terminal verifying the origin or authenticity of the command. This attack is considered to have high complexity and is difficult to exploit. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Shenzhen HCC Technology MPOS M6 PLUS version 1V.31-N **Description** A flaw in the Cardholder Data Handler component allows for the cleartext transmission of sensitive information through manipulation. This issue requires local network access and is characterized by high complexity, making exploitation difficult. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Consumer Comanda Mobile versions 14.9.3.2 through 15.0.0.8 **Description** A problematic issue has been found in Consumer Comanda Mobile, affecting an unknown part of the Restaurant Order Handler component. The manipulation of the `Login/Password` argument leads to the transmission of sensitive information in cleartext. The attack can only be initiated within the local network and is considered to be of rather high complexity, making it difficult to exploit. The exploit has been disclosed to the public. **Recommendations** For versions 14.9.3.2 through 15.0.0.8, consider updating to a version that fixes the issue with the `Login/Password` argument to prevent cleartext transmission of sensitive information. As a temporary workaround, consider restricting access to the Restaurant Order Handler component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** VAM Virtual Airlines Manager version 2.6.2 **Description** A vulnerability has been found in VAM Virtual Airlines Manager, affecting an unknown functionality of the file /vam/index.php. The manipulation of the argument `registry id/plane icao/hub id` leads to cross-site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way. **Recommendations** For version 2.6.2, as a temporary workaround, consider restricting access to the `/vam/index.php` file until a patch is available. Avoid using the argument `registry id/plane icao/hub id` in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: VAM Virtual Airlines Manager versions up to 2.6.2 Description: A critical issue was found in the HTTP GET Parameter Handler of VAM Virtual Airlines Manager, affecting an unknown function of the file /vam/index.php. The manipulation of the `ID`, `registry id`, or `plane icao` arguments leads to SQL injection. This issue can be exploited remotely. Other parameters might also be affected. Recommendations: For versions up to 2.6.2, consider disabling the `index.php` file or restricting access to it until a patch is available. As a temporary workaround, avoid using the `ID`, `registry id`, and `plane icao` parameters in the affected HTTP GET requests until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.