CVE-2018-12076

Name of the Vulnerable Software and Affected Versions Avanti Markets MarketCard (affected versions not specified)

Description A vulnerability exists due to the lack of proper validation of the UPC bar code on the MarketCard. This could allow an unauthenticated, local attacker to access funds within a customer's MarketCard balance and potentially lead to customer information disclosure. An attacker could exploit this by generating a copy of a customer's bar code, potentially accessing all funds on the MarketCard or disclosing information without authentication.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.