Authentication flaw

2022-12-2900:15:00

PRIOn knowledge base

www.prio-n.com

streamx

authentication

vulnerability

logic bug

implementation bypass

streamview html

web server

9.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

46.6%

JSON

StreamX applications from versions 6.02.01 to 6.04.34 are affected by a logic bug that allows to bypass the implemented authentication scheme. StreamX applications using StreamView HTML component with the public web server feature activated are affected.

CPENameOperatorVersion
streamxge6.02.01
streamxle6.04.34

CPE	Name	Operator	Version
	streamx	ge	6.02.01
	streamx	le	6.04.34

References

elvexys.com/products/xpg-gateway-rtu-protocol-converter/streamx-release-notes/