PT-2025-13005 · Opc Cardsystems · Opc Cardsystems Webapp Aufwertung

Published

2025-03-26

Updated

2025-03-28

CVE-2025-30073

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions OPC cardsystems Webapp Aufwertung version 2.1.0

Description An issue was discovered where the reference assigned to transactions can be reused. When completing a payment, the first or all transactions with the same reference are completed, depending on timing. This can be used to transfer more money onto employee cards than is paid.

Recommendations For OPC cardsystems Webapp Aufwertung version 2.1.0, as a temporary workaround, consider restricting the reuse of transaction references until a patch is available. Apply the patch as soon as possible to resolve the issue. Enhance cyber security measures to proactively defend the network.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-488

Related Identifiers

CVE-2025-30073

Affected Products

Opc Cardsystems Webapp Aufwertung

PT-2025-13005 · Opc Cardsystems · Opc Cardsystems Webapp Aufwertung

CVE-2025-30073

Weakness Enumeration

Related Identifiers

Affected Products

References · 8