| |
Podatność CVE-2024-42001
Publikacja: 2024-08-12
| Opis: |
An improper authentication vulnerability affecting Vonets
industrial wifi bridge relays and wifi bridge repeaters, software versions
3.3.23.6.9 and prior enables an unauthenticated remote attacker to
bypass authentication via a specially crafted direct request when
another user has an active session. |
Typ:
CWE-425 (Direct Request ('Forced Browsing'))
Referencje: |
https://www.cisa.gov/news-events/ics-advisories/icsa-24-214-08
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
Polish
English