6 matches found
EUVD-2016-1409
Malware in sbrugna...
Design/Logic Flaw
An issue was discovered in Sauter NovaWeb web HMI. The application uses a protection mechanism that relies on the existence or values of a cookie, but it does not properly ensure that the cookie is valid for the associated user...
CVE-2016-10224
An issue was discovered in Sauter NovaWeb web HMI. The application uses a protection mechanism that relies on the existence or values of a cookie, but it does not properly ensure that the cookie is valid for the associated user...
CVE-2016-10224
An issue was discovered in Sauter NovaWeb web HMI. The application uses a protection mechanism that relies on the existence or values of a cookie, but it does not properly ensure that the cookie is valid for the associated user...
CVE-2016-10224
The CVE-2016-10224 entry concerns Sauter NovaWeb web HMI where a protection check relies on a cookie’s existence/values but does not verify that the cookie is valid for the associated user. Affected component: the web HMI protection mechanism. Root cause: inadequate validation of user-bound cooki...
Sauter NovaWeb Web HMI Authentication Bypass Vulnerability
Sauter is a leading provider in the building, room automation, energy management and facility management sectors. An authentication bypass vulnerability exists in Sauter NovaWeb Web HMI, which can be exploited by an attacker to bypass security restrictions and perform unauthorized operations...