Описание
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected devices do not properly validate the authentication when performing certain actions in the web interface allowing an unauthenticated attacker to access and edit VxLAN configuration information of networks for which they have no privileges.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Одно из
EPSS
7.6 High
CVSS3
7.3 High
CVSS3
Дефекты
Связанные уязвимости
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). Affected devices do not properly validate the authentication when performing certain actions in the web interface allowing an unauthenticated attacker to access and edit VxLAN configuration information of networks for which they have no privileges.
Уязвимость веб-интерфейса клиента VPN-сервиса SINEMA Remote Connect, связанная с ошибками механизмов безопасности, позволяющая нарушителю просматривать и редактировать защищаемую информацию о конфигурации VxLAN сетей
EPSS
7.6 High
CVSS3
7.3 High
CVSS3