Screen SFT DAB 600/C Authentication...

- AV AC AU C I A
发布: 2023-05-15
修订: 2024-12-11

Screen SFT DAB 600/C suffers from a weak session management that can allow an attacker on the same network to bypass these controls by reusing the same IP address assigned to the victim user (NAT) and exploit crucial operations on the device itself. By abusing the IP address property that is binded to the Session ID, one needs to await for such an established session and issue unauthorized requests to the vulnerable API to manage and/or manipulate the affected transmitter.

0%
当前有1条漏洞利用/PoC
当前有0条受影响产品信息