CVE-2023-28395

Posted on 2023년 3월 29일2023년 3월 29일 by admin

CVE-2023-28395

Osprey Pump Controller version 1.01 is vulnerable to a weak session token generation algorithm that can be predicted and can aid in authentication and authorization bypass. This may allow an attacker to hijack a session by predicting the session id and gain unauthorized access to the product.

Source: CVE-2023-28395

답글 남기기 응답 취소