CVE-2021-21902
8.1HIGHAn authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0. A properly-timed network connection can lead to authenticat
Published: 12/22/2021Updated: 11/21/2024
Description
An authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0. A properly-timed network connection can lead to authentication bypass via session hijacking. An attacker can send a sequence of requests to trigger this vulnerability.
AI AnalysisPowered by AI
Affected Products
garrettic_module_cma
5.0
References
- https://talosintelligence.com/vulnerability_reports/TALOS-2021-1354ExploitThird Party Advisory
- https://talosintelligence.com/vulnerability_reports/TALOS-2021-1354ExploitThird Party Advisory