RSS   Vulnerabilities for
'Kalay p2p software development kit'
   RSS

2021-08-17
 
CVE-2021-28372

CWE-290
 

 
ThroughTek's Kalay Platform 2.0 network allows an attacker to impersonate an arbitrary ThroughTek (TUTK) device given a valid 20-byte uniquely assigned identifier (UID). This could result in an attacker hijacking a victim's connection and forcing them into supplying credentials needed to access the victim TUTK device.

 


Copyright 2024, cxsecurity.com

 

Back to Top