CVE-2021-41301

CVE-2021-41301

ECOA BAS controller is vulnerable to configuration disclosure when direct object reference is made to the specific files using an HTTP GET request. This will enable the unauthenticated attacker to remotely disclose sensitive information and help her in authentication bypass, privilege escalation and full system access.

Source: CVE-2021-41301

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다