2 matches found
CVE-2020-24683
Summary: CVE-2020-24683 affects S+ Operations (version 2.1 SP1 and earlier). The root cause is client-side authentication, where the server does not validate a client application before allowing a connection. This can allow unauthorized actors to bypass authentication and establish unauthorized c...
CVE-2020-24683 Authentication Bypass in Symphony Plus
The affected versions of S+ Operations version 2.1 SP1 and earlier used an approach for user authentication which relies on validation at the client node client-side authentication. This is not as secure as having the server validate a client application before allowing a connection. Therefore, i...