CVE-2021-21902
8.1HIGHAn authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0. A properly-timed network connection can lead to authenticat
Publicado: 12/22/2021Actualizado: 11/21/2024
Descripción
An authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0. A properly-timed network connection can lead to authentication bypass via session hijacking. An attacker can send a sequence of requests to trigger this vulnerability.
Análisis IAImpulsado por IA
Productos Afectados
garrettic_module_cma
5.0
Referencias
- https://talosintelligence.com/vulnerability_reports/TALOS-2021-1354ExploitThird Party Advisory
- https://talosintelligence.com/vulnerability_reports/TALOS-2021-1354ExploitThird Party Advisory