6.8 Medium
AI Score
Confidence
Low
0.008 Low
EPSS
Percentile
81.5%
Red-M Red-Alert 2.7.5 with software 3.1 build 24 binds authentication to IP addresses, which allows remote attackers to bypass authentication by connecting from the same IP address as an active authenticated user.
genhex.org/releases/031003.txt
marc.info/?l=full-disclosure&m=107635119005407&w=2
securitytracker.com/id?1009001
www.osvdb.org/3952
www.securiteam.com/securitynews/5SP0C0KC0A.html
www.securityfocus.com/archive/1/353211
www.securityfocus.com/bid/9618
exchange.xforce.ibmcloud.com/vulnerabilities/15088