CVE-2015-7910

2015-11-1911:00:00

icscert

www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.6%

JSON

Exemys Telemetry Web Server relies on an HTTP Location header to indicate that a client is unauthorized, which allows remote attackers to bypass intended access restrictions by disregarding this header and processing the response body.

References

ics-cert.us-cert.gov/advisories/ICSA-15-321-01