Loyalty Experience Platform

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:annexcloud:loyalty_experience_platform:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAnnexcloud (2c587d40-93c9-59a8-aeb4-7cfe6e2a15fc)
ProductLoyalty Experience Platform (2dde39c1-9b6b-5fb0-a2a4-56e7e1816de1)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-31929 vulnerable 2026-06-08 05:31:54.376166 Details available
Annex Cloud Loyalty Experience Platform <2021.1.0.1 allows any authenticated attacker to modify loyalty campaigns and settings, such as fraud prevention, coupon groups, email templates, or referrals.
Published: 2021-06-10T13:03:01.000Z
Updated: 2024-08-03T23:10:31.379Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-31928 vulnerable 2026-06-08 05:31:54.375841 Details available
Annex Cloud Loyalty Experience Platform <2021.1.0.1 allows any authenticated attacker to escalate privileges to superadministrator. It was fixed in v2021.1.0.2.
Published: 2021-06-10T14:02:56.000Z
Updated: 2024-08-03T23:10:31.294Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-31927 vulnerable 2026-06-08 05:31:54.375447 Details available
An Insecure Direct Object Reference (IDOR) vulnerability in Annex Cloud Loyalty Experience Platform <2021.1.0.1 allows any authenticated attacker to modify any existing user, including users assigned to different environments and clients. It was fixed in v2021.1.0.2.
Published: 2021-06-10T14:58:16.000Z
Updated: 2024-08-03T23:10:31.404Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.