CVE-2017-6094
Genexis GAPS (Genexis B.V.) up to version 7.2 is affected. An attacker can forge valid chk values (derived from the CPE WAN MAC) to impersonate any CPE and retrieve configuration settings from the central GAPS instance, often exposing sensitive data such as VoIP credentials. Root cause: the chk a...