CVE-2021-21902
8.1HIGHAn authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0. A properly-timed network connection can lead to authenticat
Publicado: 12/22/2021Atualizado: 11/21/2024
Descrição
An authentication bypass vulnerability exists in the CMA run_server_6877 functionality of Garrett Metal Detectors iC Module CMA Version 5.0. A properly-timed network connection can lead to authentication bypass via session hijacking. An attacker can send a sequence of requests to trigger this vulnerability.
Análise IADesenvolvido por IA
Produtos Afetados
garrettic_module_cma
5.0
Referências
- https://talosintelligence.com/vulnerability_reports/TALOS-2021-1354ExploitThird Party Advisory
- https://talosintelligence.com/vulnerability_reports/TALOS-2021-1354ExploitThird Party Advisory