CVE-2015-7285

2015-11-24T23:59:01
ID CVE-2015-7285
Type cve
Reporter NVD
Modified 2015-11-25T13:27:10

Description

CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 do not require authentication from Alarm Receiving Center (ARC) servers, which allows man-in-the-middle attackers to bypass intended access restrictions via a spoofed HSxx response.