CVE-2023-28395

CVE-2023-28395

Osprey Pump Controller version 1.01 is vulnerable to a weak session token generation algorithm that can be predicted and can aid in authentication and authorization bypass. This may allow an attacker to hijack a session by predicting the session id and gain unauthorized access to the product.

Source: CVE-2023-28395

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다