OMICARD EDM has a hard-coded machine key. An unauthenticated remote attacker can use the machine key to send serialized payload to the server to execute arbitrary code, manipulate system data and disrupt service.
CPE | Name | Operator | Version |
---|---|---|---|
omicard_edm | ge | 5.8 | |
omicard_edm | le | 6.0 |