CVE-2021-21902
The TALOS advisory documents an authentication bypass in Garrett Metal Detectors iC Module CMA Version 5.0, specifically in the CMA run_server_6877 function. A race condition allows an attacker with no password to hijack an authenticated session by copying the attacker’s socket over the legitimat...