CVE-2017-20038
SICUNET Access Controller 0.32-05z contains a vulnerability in card_scan_decoder.php where manipulating the No/door parameter leads to privilege escalation. The attack may be launched remotely, giving an attacker network-accessed, unauthorized privilege elevation with partial confidentiality/inte...