2 matches found
CVE-2019-15102
An issue was discovered in Tyto Sahi Pro 6.x through 8.0.0. TestRunnerNondistributed and distributed end points does not have any authentication mechanism. This allow an attacker to execute an arbitrary script on the remote Sahi Pro server. There is also a password-protected web interface intende...
CVE-2019-15102
Tyto Sahi Pro 6.x–8.0.0 suffers a remote code execution vulnerability due to two issues: (1) TestRunner_Non_distributed and distributed endpoints expose no authentication, allowing arbitrary script execution on the remote server, and (2) a password-protected web interface for script access lacks ...